CVE-2020-4772 is a vulnerability in IBM Curam Social Program Management
Published on October 12, 2020

An XML External Entity Injection (XXE) vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. A remote attacker could exploit this vulnerability to expose sensitive information, denial of service, server side request forgery or consume memory resources. IBM X-Force ID: 189150.

NVD

Products Associated with CVE-2020-4772

Want to know whenever a new CVE is published for IBM Curam Social Program Management? stack.watch will email you.

IBM Curam Social Program Management

Affected Versions

IBM Curam SPM:

Version 7.0.9 is affected.
Version 7.0.10 is affected.

Exploit Probability

EPSS

0.53%

Percentile

66.84%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-4772 is a vulnerability in IBM Curam Social Program ManagementPublished on October 12, 2020

Products Associated with CVE-2020-4772

Affected Versions

Exploit Probability

CVE-2020-4772 is a vulnerability in IBM Curam Social Program Management
Published on October 12, 2020