admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2020/4xxx/CVE-2020-4434.json
CVE Team 03f8d6df3e
"-Synchronized-Data."
2020-06-10 13:58:33 +00:00

180 lines
6.9 KiB
JSON
Raw Blame History

{
"data_format": "MITRE",
"impact": {
"cvssv3": {
"BM": {
"SCORE": "7.500",
"AC": "H",
"I": "H",
"UI": "N",
"A": "H",
"AV": "N",
"C": "H",
"S": "U",
"PR": "L"
},
"TM": {
"RL": "O",
"E": "U",
"RC": "C"
}
}
},
"CVE_data_meta": {
"ASSIGNER": "psirt@us.ibm.com",
"DATE_PUBLIC": "2020-06-09T00:00:00",
"ID": "CVE-2020-4434",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "Certain IBM Aspera applications are vulnerable to buffer overflow based on the product configuration and valid authentication, which could allow an attacker with intimate knowledge of the system to execute arbitrary code or perform a denial-of-service (DoS) through the http fallback service. IBM X-Force ID: 180900."
}
]
},
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"name": "https://www.ibm.com/support/pages/node/6221324",
"title": "IBM Security Bulletin 6221324 (Aspera on Demand (AOD))",
"url": "https://www.ibm.com/support/pages/node/6221324"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/180900",
"title": "X-Force Vulnerability Report",
"name": "ibm-aspera-cve20204434-bo (180900)",
"refsource": "XF"
}
]
},
"data_type": "CVE",
"data_version": "4.0",
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "IBM",
"product": {
"product_data": [
{
"version": {
"version_data": [
{
"version_value": "3.7.4"
}
]
},
"product_name": "Aspera Shares On Demand"
},
{
"product_name": "Aspera Application Platform On Demand",
"version": {
"version_data": [
{
"version_value": "3.7.4"
}
]
}
},
{
"product_name": "Aspera Transfer Cluster Manager",
"version": {
"version_data": [
{
"version_value": "1.3.1"
}
]
}
},
{
"version": {
"version_data": [
{
"version_value": "3.9.3"
}
]
},
"product_name": "Aspera High-Speed Transfer Server"
},
{
"version": {
"version_data": [
{
"version_value": "1.4.3"
}
]
},
"product_name": "Aspera Proxy Server"
},
{
"product_name": "Aspera Faspex On Demand",
"version": {
"version_data": [
{
"version_value": "3.7.4"
}
]
}
},
{
"product_name": "Aspera High-Speed Transfer Server for Cloud Pak for Integration (CP4I)",
"version": {
"version_data": [
{
"version_value": "3.9.10"
}
]
}
},
{
"product_name": "Aspera High-Speed Transfer Endpoint",
"version": {
"version_data": [
{
"version_value": "3.9.3"
}
]
}
},
{
"version": {
"version_data": [
{
"version_value": "3.9.3"
}
]
},
"product_name": "Aspera Streaming"
},
{
"version": {
"version_data": [
{
"version_value": "3.7.4"
}
]
},
"product_name": "Aspera Server On Demand"
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Gain Privileges"
}
]
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink