Lucene search

K

IBM015DFB089EB9934FF1FA61492EA2A8EC3038D0C4ECAF60DBA65BE26CAF24D9D2

HistoryFeb 04, 2021 - 4:29 p.m.

Security Bulletin: PowerHA System Mirror for AIX vulnerability

2021-02-0416:29:46

www.ibm.com

6

ibm powerha

vulnerability

sensitive information

aix

temporary directories

local attacker

discovery failure

cvss

fix

version 7.2.4

version 7.2.3

version 7.2.2

EPSS

0

Percentile

5.1%

Summary

IBM PowerHA could allow a local attacker to obtain sensitive information from temporary directories after a discovery failure occurs.

Vulnerability Details

CVEID:CVE-2020-4832
**DESCRIPTION:**IBM PowerHA could allow a local attacker to obtain sensitive information from temporary directories after a discovery failure occurs.
CVSS Base score: 6.2
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/189969 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)

Affected Products and Versions

Affected Product(s)	Version(s)
PowerHA	All

Remediation/Fixes

PowerHA System Mirror for AIX - 7.2.4 SP2

https://www.ibm.com/support/fixcentral/swg/selectFixes?parent=Cluster%20software&product=ibm/Other+software/PowerHAClusterManager&release=7.2.4&platform=AIX&function=all

PowerHA System Mirror for AIX - 7.2.3 SP4

https://www.ibm.com/support/fixcentral/swg/selectFixes?parent=Cluster%20software&product=ibm/Other+software/PowerHAClusterManager&release=7.2.3&platform=AIX&function=all

PowerHA System Mirror for AIX - 7.2.2 SP5

https://www.ibm.com/support/fixcentral/swg/selectFixes?parent=Cluster%20software&product=ibm/Other+software/PowerHAClusterManager&release=7.2.2&platform=AIX&function=all

Workarounds and Mitigations

None

EPSS

0

Percentile

5.1%

Related for 015DFB089EB9934FF1FA61492EA2A8EC3038D0C4ECAF60DBA65BE26CAF24D9D2

nvd1 cvelist1 prion1 cve1