Unrated severityNVD Advisory· Published Oct 12, 2020· Updated Sep 16, 2024
CVE-2020-4772
CVE-2020-4772
Description
An XML External Entity Injection (XXE) vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. A remote attacker could exploit this vulnerability to expose sensitive information, denial of service, server side request forgery or consume memory resources. IBM X-Force ID: 189150.
Affected products
2- Range: 7.0.9, 7.0.10
- IBM/Curam SPMv5Range: 7.0.9
Patches
Vulnerability mechanics
References
2- exchange.xforce.ibmcloud.com/vulnerabilities/189150mitrevdb-entryx_refsource_XF
- www.ibm.com/support/pages/node/6344069mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.