CVE-2020-4348
First published: Wed May 27 2020(Updated: )
IBM Spectrum Scale 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.4 could allow an authenticated GUI user to perform unauthorized actions due to missing function level access control. IBM X-Force ID: 178414
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Spectrum Scale | >=4.2.0.0<=4.2.3.21 | |
| IBM Spectrum Scale | >=5.0.0.0<=5.0.4.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2020-4348.
What is the severity of CVE-2020-4348?
The severity of CVE-2020-4348 is medium with a severity value of 6.5.
What is the affected software for CVE-2020-4348?
The affected software for CVE-2020-4348 is IBM Spectrum Scale versions 4.2.0.0 through 4.2.3.21 and 5.0.0.0 through 5.0.4.4.
What actions could an authenticated GUI user perform due to this vulnerability?
An authenticated GUI user could perform unauthorized actions due to missing function level access control.
Where can I find more information about CVE-2020-4348?
You can find more information about CVE-2020-4348 at the IBM X-Force ID: 178414 and the IBM support page.
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/remedy
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/ibm
- canonical/ibm spectrum scale
- version/ibm spectrum scale/4.2.0.0
- version/ibm spectrum scale/4.2.3.21
- version/ibm spectrum scale/5.0.0.0
- version/ibm spectrum scale/5.0.4.4