Description

IBM Jazz Foundation products are vulnerable to server side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 192434.

Remediation

References

CVE-2020-4974

Related Vulnerabilities

WebLogic CVE-2019-2398 Vulnerability (CVE-2019-2398)

SharePoint Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-31950)

WordPress Plugin Gallery-Responsive Photo and Video Gallery by Limb Cross-Site Scripting (1.3.2)

WordPress Plugin Gallery for Social Photo Unspecified Vulnerability (1.0.0.25)

SharePoint Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-0933)

Severity

Medium

Classification

CVE-2020-4974 CWE-918 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Tags

Missing Update Known Vulnerabilities