Denial of Service Vulnerability in IBM Tivoli Netcool Impact
CVE-2020-4236

6.5MEDIUM

Key Information:

Vendor: IBM
Status: Tivoli Netcool Impact
Vendor: CVE Published:; 31 March 2020

Summary

IBM Tivoli Netcool Impact versions 7.1.0.0 through 7.1.0.17 are susceptible to a vulnerability that allows authenticated users to create a denial of service by improperly parsing content within the project management module. This flaw may lead to service disruption, impeding the system's operations and affecting overall performance.

Affected Version(s)

Tivoli Netcool Impact 7.1.0

Tivoli Netcool Impact 7.1.0.17

References

https://www.ibm.com/support/pages/node/6128937

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/175409

vdb-entryx_refsource_XF

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 31, 2020
Vulnerability Reserved
Dec 30, 2019