2 matches found
CVE-2020-4747
CVE-2020-4747 affects IBM Sterling Connect:Direct for UNIX (UNIX variants) including versions 4.2.0, 6.0.0, 6.1.0, and 4.3.0. The vulnerability arises from improper authentication methods that allow a local or remote user to obtain an authenticated CLI session (impact: confidentiality, integrity,...
CVE-2020-4587
The CVE-2020-4587 issue affects IBM Sterling Connect:Direct for UNIX (versions 4.2.0, 4.3.0, 6.0.0, 6.1.0). It is a stack-based buffer overflow caused by improper bounds checking in the ndmauth-related path, enabling a local attacker to gain root-level privileges on the affected CD UNIX installat...