Data Risk Manager Security Vulnerabilities and Issues — Data Risk Manager CVE List

Lucene search

IbmData Risk Manager

3 matches found

CVE•added 2020/05/07 8:15 p.m.•1085 views

CVE-2020-4427

IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, and 2.0.6 could allow a remote attacker to bypass security restrictions when configured with SAML authentication. By sending a specially crafted HTTP request, an attacker could exploit this vulnerability to bypass the authentication process a...

9.8CVSS9.2AI score0.51006EPSS

CVE•added 2020/05/07 8:15 p.m.•1085 views

CVE-2020-4428

IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated attacker to execute arbitrary commands on the system. IBM X-Force ID: 180533.

9.1CVSS9AI score0.48308EPSS

CVE•added 2020/09/22 2:15 p.m.•49 views

CVE-2020-4620

IBM Data Risk Manager (iDNA) 2.0.6 could allow a remote authenticated attacker to upload arbitrary files, caused by the improper validation of file extensions. By sending a specially-crafted HTTP request, a remote attacker could exploit this vulnerability to upload a malicious file, which could all...

9CVSS8.8AI score0.0414EPSS