CVE-2020-4610
https://notcve.org/view.php?id=CVE-2020-4610
IBM Security Secret Server (IBM Security Verify Privilege Manager 10.8.2 ) could allow a local user to execute code due to improper integrity checks. IBM X-Force ID: 184919. IBM Security Secret Server (IBM Security Verify Privilege Manager 10.8.2 ) podría permitir a un usuario local ejecutar código debido a comprobaciones de integridad inadecuadas. ID de IBM X-Force: 184919 • https://exchange.xforce.ibmcloud.com/vulnerabilities/184919 https://www.ibm.com/support/pages/node/6467047 • CWE-354: Improper Validation of Integrity Check Value •
CVE-2020-4609
https://notcve.org/view.php?id=CVE-2020-4609
IBM Security Sevret Server (IBM Security Verify Privilege Manager 10.8.2) is vulnerable to a buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and execute arbitrary code on the system or cause the system to crash. IBM X-Force ID: 184917. IBM Security Sevret Server (IBM Security Verify Privilege Manager versión 10.8.2) es vulnerable a un desbordamiento de búfer, causado por una comprobación inapropiada de límites. Un atacante local podría desbordar un búfer y ejecutar código arbitrario en el sistema o causar un bloqueo del sistema. • https://exchange.xforce.ibmcloud.com/vulnerabilities/184917 https://www.ibm.com/support/pages/node/6467047 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2020-4606
https://notcve.org/view.php?id=CVE-2020-4606
IBM Security Verify Privilege Manager 10.8 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A local attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 184883. IBM Security Verify Privilege Manager versión 10.8, es vulnerable a un ataque de Inyección de Entidad Externa XML (XXE) al procesar datos XML. Un atacante local podría explotar esta vulnerabilidad para exponer información confidencial o consumir recursos de memoria. • https://exchange.xforce.ibmcloud.com/vulnerabilities/184883 https://www.ibm.com/support/pages/node/6398602 • CWE-611: Improper Restriction of XML External Entity Reference •