CVE-2020-4555

🗓️ 21 Dec 2020 17:50:28Reported by ibmType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 44 Views

IBM Financial Transaction Manager allows authenticated user impersonation

Reporter	Title	Published	Views	Family All 12
IBM Security Bulletins	Security Bulletin: Financial Transaction Manager for Check Services is affected by a potential logout session timeout (CVE-2020-4555)	18 Dec 202018:33	–	ibm
IBM Security Bulletins	Security Bulletin: Financial Transaction Manager for ACH Services is affected by a potential logout session timeout (CVE-2020-4555)	18 Dec 202018:21	–	ibm
IBM Security Bulletins	Security Bulletin: Financial Transaction Manager for Corporate Payment Services is affected by a potential logout session timeout (CVE-2020-4555)	18 Dec 202018:49	–	ibm
IBM Security Bulletins	Security Bulletin: Financial Transaction Manager for High Value Payments is affected by a potential logout session timeout (CVE-2020-4555)	18 Dec 202018:25	–	ibm
IBM Security Bulletins	Security Bulletin: Financial Transaction Manager for Corporate Payment Services v2.1.1 is affected by a potential logout session timeout (CVE-2020-4555)	18 Dec 202019:57	–	ibm
IBM Security Bulletins	Security Bulletin: Financial Transaction Manager for Digital Payments is affected by a potential logout session timeout (CVE-2020-4555)	18 Dec 202018:29	–	ibm
CNNVD	IBM Financial Transaction Manager 授权问题漏洞	18 Dec 202000:00	–	cnnvd
CNVD	IBM Financial Transaction Manager Authorization Issues Vulnerability	23 Dec 202000:00	–	cnvd
Cvelist	CVE-2020-4555	21 Dec 202017:50	–	cvelist
EUVD	EUVD-2020-25802	7 Oct 202500:30	–	euvd

NVD

Vulners

Node

ibm financial_transaction_managerMatch2.1.1.0cps_services

ibm financial_transaction_managerMatch3.0.0check_services

ibm financial_transaction_managerMatch3.0.2check_services

ibm financial_transaction_managerMatch3.0.2cps_services

ibm financial_transaction_managerMatch3.0.5check_services

ibm financial_transaction_managerMatch3.0.6ach_services

ibm financial_transaction_managerMatch3.1.0ach_services

ibm financial_transaction_managerMatch3.2.1cps_services

ibm financial_transaction_managerMatch3.2.2digital_payments

ibm financial_transaction_managerMatch3.2.3digital_payments

ibm financial_transaction_managerMatch3.2.4cps_services

ibm financial_transaction_managerMatch3.2.4digital_payments

ibm financial_transaction_managerMatch3.2.4high_value

[
  {
    "product": "Financial Transaction Manager",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "3.0.2"
      },
      {
        "status": "affected",
        "version": "2.1.1"
      },
      {
        "status": "affected",
        "version": "3.1.0"
      },
      {
        "status": "affected",
        "version": "3.0.5"
      },
      {
        "status": "affected",
        "version": "3.0.6"
      },
      {
        "status": "affected",
        "version": "3.0.0"
      },
      {
        "status": "affected",
        "version": "3.2.2"
      },
      {
        "status": "affected",
        "version": "3.2.3"
      },
      {
        "status": "affected",
        "version": "3.2.4"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/6388722
ibm	www.ibm.com/support/pages/node/6388706
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/183328
ibm	www.ibm.com/support/pages/node/6388702
ibm	www.ibm.com/support/pages/node/6388704
ibm	www.ibm.com/support/pages/node/6388744
ibm	www.ibm.com/support/pages/node/6388708

21 Nov 2024 05:32Current

5.1Medium risk

Vulners AI Score5.1

CVSS 3.15.4

CVSS 25.5

CVSS 36.3

EPSS0.0026

CWE-384