Executive Summary

Informations
Name CVE-2020-4756 First vendor Publication 2020-10-20
Vendor Cve Last vendor Modification 2020-10-20

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Overall CVSS Score 5.5
Base Score 5.5 Environmental Score 5.5
impact SubScore 3.6 Temporal Score 5.5
Exploitabality Sub Score 1.8
 
Attack Vector Local Attack Complexity Low
Privileges Required Low User Interaction None
Scope Unchanged Confidentiality Impact None
Integrity Impact None Availability Impact High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score 4.9 Attack Range Local
Cvss Impact Score 6.9 Attack Complexity Low
Cvss Expoit Score 3.9 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

IBM Spectrum Scale V4.2.0.0 through V4.2.3.23 and V5.0.0.0 through V5.0.5.2 as well as IBM Elastic Storage System 6.0.0 through 6.0.1.0 could allow a local attacker to invoke a subset of ioctls on the device with invalid arguments that could crash the keneral and cause a denial of service. IBM X-Force ID: 188599.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-4756

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-404 Improper Resource Shutdown or Release

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 35
Application 61

Sources (Detail)

Source Url
CONFIRM https://www.ibm.com/support/pages/node/6349469
https://www.ibm.com/support/pages/node/6349475
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/188599

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
Date Informations
2022-03-10 01:49:21
  • Multiple Updates
2021-05-22 01:36:18
  • Multiple Updates
2021-05-04 14:01:56
  • Multiple Updates
2021-04-22 03:08:13
  • Multiple Updates
2021-03-27 01:35:14
  • Multiple Updates
2020-10-21 00:22:59
  • Multiple Updates
2020-10-20 21:23:29
  • First insertion