CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-4494

IBM Spectrum Protect Client 8.1.7.0 through 8.1.9.1 (Linux and Windows), 8.1.9.0 trough 8.1.9.1 (AIX) and IBM Spectrum Protect for Space Management 8.1.7.0 through 8.1.9.1 (Linux), 8.1.9.0 through 8.1.9.1 (AIX) web user interfaces could allow an attacker to bypass authentication due to improper session validation which can result in access to unauthorized resources. IBM X-Force ID: 182019.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.4%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2020-4494

Ibm » Spectrum Protect Client » Version: 8.1.7.0

cpe:2.3:a:ibm:spectrum_protect_client:8.1.7.0
Ibm » Spectrum Protect Client » Version: 8.1.9.0

cpe:2.3:a:ibm:spectrum_protect_client:8.1.9.0
Ibm » Spectrum Protect Client » Version: 8.1.9.1

cpe:2.3:a:ibm:spectrum_protect_client:8.1.9.1
Ibm » Spectrum Protect For Space Management » Version: 8.1.7.0

cpe:2.3:a:ibm:spectrum_protect_for_space_management:8.1.7.0
Ibm » Spectrum Protect For Space Management » Version: 8.1.9.0

cpe:2.3:a:ibm:spectrum_protect_for_space_management:8.1.9.0
Ibm » Spectrum Protect For Space Management » Version: 8.1.9.1

cpe:2.3:a:ibm:spectrum_protect_for_space_management:8.1.9.1
Ibm » Aix » Version: N/A

cpe:2.3:o:ibm:aix:-
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-4494

Products

Pricing

Contact Us