EUVD-2020-25994

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

IBM Connect:Direct for UNIX suffers from improper authentication allowing unauthorized CLI access.

Reporter	Title	Published	Views	Family All 8
IBM Security Bulletins	Security Bulletin: Authentication mechanism vulnerability affects IBM Connect:Direct for UNIX (CVE-2020-4747)	16 Dec 202016:32	–	ibm
CNNVD	IBM Connect:Direct for UNIX 授权问题漏洞	14 Dec 202000:00	–	cnnvd
CNVD	IBM Connect:Direct for UNIX License Issue Vulnerability	15 Dec 202000:00	–	cnvd
CVE	CVE-2020-4747	15 Dec 202014:45	–	cve
Cvelist	CVE-2020-4747	15 Dec 202014:45	–	cvelist
NVD	CVE-2020-4747	15 Dec 202015:15	–	nvd
OSV	CVE-2020-4747	15 Dec 202015:15	–	osv
Prion	Authentication flaw	15 Dec 202015:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "6c243216-e2e4-3c9e-a2eb-d6413e1e65c3",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "58488149-26cc-3580-ab91-7f56f8cb1340",
        "product": {
          "name": "Sterling Connect:Direct for UNIX"
        },
        "product_version": "6.1.0"
      },
      {
        "id": "932fb599-f811-3875-8e2d-7caf46fa885a",
        "product": {
          "name": "Sterling Connect:Direct for UNIX"
        },
        "product_version": "4.2.0"
      },
      {
        "id": "ad91a500-62c0-389e-86c1-42f38505c73e",
        "product": {
          "name": "Sterling Connect:Direct for UNIX"
        },
        "product_version": "4.3.0"
      },
      {
        "id": "cbbd6cec-d0f0-3acc-ae4c-6339309ea0f6",
        "product": {
          "name": "Sterling Connect:Direct for UNIX"
        },
        "product_version": "6.0.0"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/6381904
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/188516
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

7.7High risk

Vulners AI Score7.7

CVSS 37.4

CVSS 27.5

CVSS 3.19.8

EPSS0.01998