CyberSec.Space Logo
CVEブラウザに戻る

CVE-2019-4640

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0270%
EPSS Percentile3.84th
Published2020年2月19日
Last Modified2024年11月21日

Vulnerability Description

IBM Security Secret Server 10.7 processes patches, image backups and other updates without sufficiently verifying the origin and integrity of the code which could result in an attacker executing malicious code. IBM X-Force ID: 170046.

Affected Platforms (CPE)

📦
Ibm

Security Secret Server

All versions

References & Advisories

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/170046
🔗 https://www.ibm.com/support/pages/node/2929923
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/170046
🔗 https://www.ibm.com/support/pages/node/2929923

関連する脆弱性情報

CVE-2014-1251129.8

Plack::Middleware::Session::Cookie versions through 0.21 for Perl allows remote code execution. Plack::Middleware::Session::Cooki...

CVE-2018-36438.2

A vulnerability in Power Management Controller firmware in systems using specific Intel(R) Converged Security and Management Engin...

CVE-2021-286808.1

The devise_masquerade gem before 1.3 allows certain attacks when a password's salt is unknown. An application that uses this gem t...

CVE-2017-137188.0

The HTTP API supported by Starry Station (aka Starry Router) allows brute forcing the PIN setup by the user on the device, and thi...