6.4
CVSSv2

CVE-2020-4240

Published: 31/03/2020 Updated: 31/03/2020
CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P

Vulnerability Summary

IBM Spectrum Protect Plus 10.1.0 up to and including 10.1.5 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request to overwrite or create arbitrary files on the system. IBM X-Force ID: 175417.

Vulnerability Trend