CVE-2020-4956 is a vulnerability in IBM Spectrum Protect Operations Center
Published on February 15, 2021
IBM Spectrum Protect Operations Center 7.1 and 8.1 is vulnerable to a denial of service, caused by a RPC that allows certain cache values to be set and dumped to a file. By setting a grossly large cache value and dumping that cached value to a file multiple times, a remote attacker could exploit this vulnerability to cause the consumption of all memory resources. IBM X-Force ID: 192156.
Products Associated with CVE-2020-4956
Want to know whenever a new CVE is published for IBM Spectrum Protect Operations Center? stack.watch will email you.
Affected Versions
IBM Spectrum Protect Operations Center:- Version 8.1 is affected.
- Version 7.1 is affected.
- Version 8.1.10.100 is affected.
- Version 7.1.12 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.