Unrated severityNVD Advisory· Published Jun 10, 2020· Updated Sep 16, 2024
CVE-2020-4435
CVE-2020-4435
Description
Certain IBM Aspera applications are vulnerable to arbitrary memory corruption based on the product configuration, which could allow an attacker with intimate knowledge of the system to execute arbitrary code or perform a denial-of-service (DoS) through the http fallback service. IBM X-Force ID: 180901.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11- IBM/Aspera Application Platform On Demandv5Range: 3.7.4
- IBM/Aspera Faspex On Demandv5Range: 3.7.4
3.9.3+ 1 more
- (no CPE)range: 3.9.3
- (no CPE)range: 3.9.3
- IBM/Aspera High-Speed Transfer Server for Cloud Pak for Integration (CP4I)v5Range: 3.9.10
- IBM/Aspera Proxy Serverv5Range: 1.4.3
- IBM/Aspera Server On Demandv5Range: 3.7.4
- Range: 3.7.4
- IBM/Aspera Streamingv5Range: 3.9.3
- IBM/Aspera Transfer Cluster Managerv5Range: 1.3.1
Patches
Vulnerability mechanics
References
2- exchange.xforce.ibmcloud.com/vulnerabilities/180901mitrevdb-entryx_refsource_XF
- www.ibm.com/support/pages/node/6221324mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.