Unrated severityCISA KEVNVD Advisory· Published May 7, 2020· Updated Jan 12, 2026

CVE-2020-4430

Description

IBM Data Risk Manager 2.0.1, 2.0.2, 2.0.3, and 2.0.4 could allow a remote authenticated attacker to traverse directories on the system. An attacker could send a specially-crafted URL request to download arbitrary files from the system. IBM X-Force ID: 180535.

Affected products

IBM/Data Risk Managerv5
Range: 2.0.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

exchange.xforce.ibmcloud.com/vulnerabilities/180535mitrevdb-entryx_refsource_XF
www.ibm.com/support/pages/node/6206875mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.067
exploit	0.000
kev	0.120
patch	0.000
ransomware	0.000