← voltar
CVE-2020-4545

CVE-2020-4545

CVSS 7.8 HIGHEPSS 3.0%
Vexday Risk Score
21Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 7.8EPSS 3.0%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
04 set 2020Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
IBM Aspera Connect 3.9.9 could allow a remote attacker to execute arbitrary code on the system, caused by improper loading of Dynamic Link Libraries by the import feature. By persuading a victim to open a specially-crafted .DLL file, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 183190.
CVSS:3.0/AC:L/A:H/UI:R/AV:L/S:U/I:H/PR:N/C:H/E:U/RC:C/RL:O
Produtos afetados
IBM · Aspera Connect

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://exchange.xforce.ibmcloud.com/vulnerabilities/183190https://www.ibm.com/support/pages/node/6326537