CVE-2020-4759
First published: Fri Sep 25 2020(Updated: )
IBM FileNet Content Manager 5.5.4 and 5.5.5 is potentially vulnerable to CVS Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 188736.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM FileNet Content Manager | =5.5.4 | |
| IBM FileNet Content Manager | =5.5.5 | |
| <=5.5.4 | ||
| <=5.5.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-4759?
CVE-2020-4759 is a vulnerability in IBM FileNet Content Manager 5.5.4 and 5.5.5 that allows remote attackers to execute arbitrary commands on the system through improper validation of csv file contents.
How severe is CVE-2020-4759?
CVE-2020-4759 has a severity rating of critical with a CVSS score of 7.8.
How does CVE-2020-4759 affect IBM FileNet Content Manager?
CVE-2020-4759 affects IBM FileNet Content Manager versions 5.5.4 and 5.5.5.
How can I fix CVE-2020-4759?
To fix CVE-2020-4759, IBM FileNet Content Manager users should apply the necessary patches or updates provided by IBM.
Where can I find more information about CVE-2020-4759?
More information about CVE-2020-4759 can be found on the IBM X-Force ID page (ID: 188736) and the IBM Support page.
- collector/nvd-index
- agent/references
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/severity
- agent/remedy
- agent/softwarecombine
- agent/description
- collector/ibm-support
- source/IBM
- agent/software-canonical-lookup
- agent/event
- agent/trending
- agent/tags
- agent/source
- vendor/ibm
- canonical/ibm filenet content manager
- version/ibm filenet content manager/5.5.4
- version/ibm filenet content manager/5.5.5