CVE-2020-4626
CVE-2020-4626
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5EPSS 1.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
30 Nov 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Cloud Pak for Security 1.3.0.1 (CP4S) could reveal sensitive information about the internal network to an authenticated user using a specially crafted HTTP request. IBM X-Force ID: 185362.
CVSS:3.0/A:N/UI:N/S:C/AV:N/C:L/AC:L/I:N/PR:L/RC:C/RL:O/E:U
Affected products
IBM · Cloud Pak for SecurityWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →