CVE-2020-4620
CVE-2020-4620 affects IBM Data Risk Manager (iDNA) 2.0.6. The issue arises from improper validation of file extensions, allowing a remote authenticated attacker to upload arbitrary files via a crafted HTTP request. The uploaded file could enable remote code execution on the vulnerable system. The...