← voltar
CVE-2020-4956

CVE-2020-4956

CVSS 4.8 MEDIUMEPSS 0.4%
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 4.8EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
15 fev 2021Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
IBM Spectrum Protect Operations Center 7.1 and 8.1 is vulnerable to a denial of service, caused by a RPC that allows certain cache values to be set and dumped to a file. By setting a grossly large cache value and dumping that cached value to a file multiple times, a remote attacker could exploit this vulnerability to cause the consumption of all memory resources. IBM X-Force ID: 192156.
CVSS:3.0/C:N/I:N/PR:L/AV:A/UI:N/A:H/S:U/AC:H/E:U/RL:O/RC:C