← Volver a CVEs
CVE-2019-4640
CRITICAL9.8
Descripcion
IBM Security Secret Server 10.7 processes patches, image backups and other updates without sufficiently verifying the origin and integrity of the code which could result in an attacker executing malicious code. IBM X-Force ID: 170046.
Detalles CVE
Puntuacion CVSS v3.19.8
SeveridadCRITICAL
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado2/19/2020
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
ibm:security_secret_servermicrosoft:windows
Debilidades (CWE)
CWE-346
Referencias
https://exchange.xforce.ibmcloud.com/vulnerabilities/170046(psirt@us.ibm.com)
https://www.ibm.com/support/pages/node/2929923(psirt@us.ibm.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/170046(af854a3a-2127-422b-91ae-364da2661108)
https://www.ibm.com/support/pages/node/2929923(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.