Arbitrary Code Execution Vulnerability in IBM Tivoli Monitoring
CVE-2020-4311

7.4HIGH

Key Information:

Vendor

IBM
Status
Tivoli Monitoring
Vendor
CVE Published:
23 April 2020

What is CVE-2020-4311?

A vulnerability in IBM Tivoli Monitoring 6.3.0 may allow a local attacker to execute arbitrary code by placing a specially crafted file in the system. This could enable the attacker to load malicious DLL files from the same directory, thereby executing unauthorized code and potentially compromising the system's integrity.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Tivoli Monitoring 6.3.0

References

https://www.ibm.com/support/pages/node/6198358
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/177083
vdb-entryx_refsource_XF

CVSS V3.1

Score:
7.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.