CyberSec.Space Logo
Back to CVE Browser

CVE-2019-4640

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0270%
EPSS Percentile3.84th
PublishedFeb 19, 2020
Last ModifiedNov 21, 2024

Vulnerability Description

IBM Security Secret Server 10.7 processes patches, image backups and other updates without sufficiently verifying the origin and integrity of the code which could result in an attacker executing malicious code. IBM X-Force ID: 170046.

Affected Platforms (CPE)

πŸ“¦
Ibm

Security Secret Server

All versions

References & Advisories

πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/170046
πŸ”— https://www.ibm.com/support/pages/node/2929923
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/170046
πŸ”— https://www.ibm.com/support/pages/node/2929923

Related Vulnerabilities

CVE-2014-1251129.8

Plack::Middleware::Session::Cookie versions through 0.21 for Perl allows remote code execution. Plack::Middleware::Session::Cooki...

CVE-2018-36438.2

A vulnerability in Power Management Controller firmware in systems using specific Intel(R) Converged Security and Management Engin...

CVE-2021-286808.1

The devise_masquerade gem before 1.3 allows certain attacks when a password's salt is unknown. An application that uses this gem t...

CVE-2017-137188.0

The HTTP API supported by Starry Station (aka Starry Router) allows brute forcing the PIN setup by the user on the device, and thi...