Vulnerability in Ibm Data Risk Manager
CVE-2020-4621
IBM Data Risk Manager (iDNA) 2.0.6 could allow an authenticated user to escalate their privileges to administrator due to insufficient authorization checks. IBM X-Force ID: 184981.
EPSS: 0.004 (60.0th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 8.8 (High). Vector: CVSS:3.0/AV:N/S:U/C:H/AC:L/A:H/UI:N/I:H/PR:L/RL:O/RC:C/E:U.
Affected products
- Ibm Data Risk Manager — versions 2.0.6
References
- www.ibm.com/support/pages/node/6335281 (x_refsource_CONFIRM)
- ibm-idna-cve20204621-priv-escalation (184981) (vdb-entry, x_refsource_XF)
Frequently asked questions
- What is CVE-2020-4621?
- CVE-2020-4621 is a high-severity vulnerability in Ibm Data Risk Manager. CVSS score: 8.8/10. Published 2020-09-22.
- How severe is CVE-2020-4621?
- High severity. CVSS v3 base score is 8.8 out of 10.