3 matches found
IBM Data Risk Manager Arbitrary File Download (CVE-2020-4430)
An arbitrary file download vulnerability exists in IBM Data Risk Manager. Successful exploitation of this vulnerability would allow a remote attacker to download arbitrary files from affected system...
CVE-2020-4430
creationtimestamp| type| source ---|---|--- 2021-11-08 08:58:18+00:00| seen| MISP/f5030aca-7d5a-43a4-ae03-8f4ac8e85422 2021-11-20 09:53:52+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2023-12-05 07:28:19+00:00| seen| https://t.me/arpsyndicate/1421 2024-12-24 20:23:41+00:00| seen|...
CVE-2020-4430
CVE-2020-4430 affects IBM Data Risk Manager (IDRM) 2.0.1–2.0.4. A remote authenticated attacker can traverse directories via a specially crafted URL request to download arbitrary files from the system. The related Nessus/Checkpoints indicate multiple vulnerabilities in IDRM 2.0.1–2.0.4, including...