EUVD-2020-25834

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

IBM Sterling Connect:Direct for UNIX is vulnerable to a stack based buffer overflow allowing root access.

Reporter	Title	Published	Views	Family All 7
CNVD	IBM Sterling Connect:Direct for UNIX Stack Buffer Overflow Vulnerability	25 Aug 202000:00	–	cnvd
CVE	CVE-2020-4587	24 Aug 202015:30	–	cve
Cvelist	CVE-2020-4587	24 Aug 202015:30	–	cvelist
IBM Security Bulletins	Security Bulletin: IBM Connect:Direct for UNIX is Vulnerable to a Privilege Escalation Attack via its ndmauth modules	21 Aug 202017:25	–	ibm
NVD	CVE-2020-4587	24 Aug 202016:15	–	nvd
OSV	CVE-2020-4587	24 Aug 202016:15	–	osv
Prion	Stack overflow	24 Aug 202016:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "0fa2be5f-6a78-3284-8ad4-e7a5d483cfd1",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "09103b02-529b-3bcf-ab7d-9b4df0c1d8eb",
        "product": {
          "name": "Sterling Connect:Direct for UNIX"
        },
        "product_version": "4.2.0"
      },
      {
        "id": "a12f77d6-9728-3266-bb8e-efc4dbfb1b15",
        "product": {
          "name": "Connect:Direct for UNIX"
        },
        "product_version": "6.0.0"
      },
      {
        "id": "f2100b06-8322-3607-b522-2041dd242aad",
        "product": {
          "name": "Sterling Connect:Direct for UNIX"
        },
        "product_version": "4.3.0"
      },
      {
        "id": "f37a9eb5-f688-310d-a0a0-2438fe97e560",
        "product": {
          "name": "Connect:Direct for UNIX"
        },
        "product_version": "6.1.0"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/6320317
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/184578
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

8.2High risk

Vulners AI Score8.2

CVSS 38.4

CVSS 27.2

CVSS 3.17.8

EPSS0.0034