Vulnerability-Lookup

CNVD-2020-33144

Vulnerability from cnvd - Published: 2020-06-16

Title

多款IBM产品命令执行漏洞（CNVD-2020-33144）

Description

IBM Aspera是美国IBM公司的一套基于IBM FASP协议构建的快速文件传输和流解决方案。多款IBM产品中存在安全漏洞。攻击者可利用该漏洞执行任意代码或造成拒绝服务。

Severity

中

Patch Name

多款IBM产品命令执行漏洞（CNVD-2020-33144）的补丁

Patch Description

IBM Aspera是美国IBM公司的一套基于IBM FASP协议构建的快速文件传输和流解决方案。多款IBM产品中存在安全漏洞。攻击者可利用该漏洞执行任意代码或造成拒绝服务。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://www.ibm.com/support/pages/node/6221324

Reference

https://nvd.nist.gov/vuln/detail/CVE-2020-4435

Impacted products

Name
['IBM Aspera High-Speed Transfer Server <=3.9.3', 'IBM High-Speed Transfer Endpoint <=3.9.3', 'IBM Proxy Server <=1.4.3', 'IBM Transfer Cluster Manager 1.3.1', 'IBM Transfer Cluster Manager <=3.9.3', 'IBM Application Platform On Demand <=3.7.4', 'IBM Faspex On Demand <=3.7.4', 'IBM Server On Demand <=3.7.4', 'IBM Shares On Demand <=3.7.4', 'IBM Streaming <=3.9.3', 'IBM High-Speed Transfer Server for Cloud Pak for Integration (CP4I) <=3.9.10']

Name

['IBM Aspera High-Speed Transfer Server <=3.9.3', 'IBM High-Speed Transfer Endpoint <=3.9.3', 'IBM Proxy Server <=1.4.3', 'IBM Transfer Cluster Manager 1.3.1', 'IBM Transfer Cluster Manager <=3.9.3', 'IBM Application Platform On Demand <=3.7.4', 'IBM Faspex On Demand <=3.7.4', 'IBM Server On Demand <=3.7.4', 'IBM Shares On Demand <=3.7.4', 'IBM Streaming <=3.9.3', 'IBM High-Speed Transfer Server for Cloud Pak for Integration (CP4I) <=3.9.10']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-4435"
    }
  },
  "description": "IBM Aspera\u662f\u7f8e\u56fdIBM\u516c\u53f8\u7684\u4e00\u5957\u57fa\u4e8eIBM FASP\u534f\u8bae\u6784\u5efa\u7684\u5feb\u901f\u6587\u4ef6\u4f20\u8f93\u548c\u6d41\u89e3\u51b3\u65b9\u6848\u3002\n\n\u591a\u6b3eIBM\u4ea7\u54c1\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610f\u4ee3\u7801\u6216\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://www.ibm.com/support/pages/node/6221324",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-33144",
  "openTime": "2020-06-16",
  "patchDescription": "IBM Aspera\u662f\u7f8e\u56fdIBM\u516c\u53f8\u7684\u4e00\u5957\u57fa\u4e8eIBM FASP\u534f\u8bae\u6784\u5efa\u7684\u5feb\u901f\u6587\u4ef6\u4f20\u8f93\u548c\u6d41\u89e3\u51b3\u65b9\u6848\u3002\r\n\r\n\u591a\u6b3eIBM\u4ea7\u54c1\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u4efb\u610f\u4ee3\u7801\u6216\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "\u591a\u6b3eIBM\u4ea7\u54c1\u547d\u4ee4\u6267\u884c\u6f0f\u6d1e\uff08CNVD-2020-33144\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "IBM Aspera High-Speed Transfer Server \u003c=3.9.3",
      "IBM High-Speed Transfer Endpoint \u003c=3.9.3",
      "IBM Proxy Server \u003c=1.4.3",
      "IBM Transfer Cluster Manager 1.3.1",
      "IBM Transfer Cluster Manager \u003c=3.9.3",
      "IBM Application Platform On Demand \u003c=3.7.4",
      "IBM Faspex On Demand \u003c=3.7.4",
      "IBM Server On Demand \u003c=3.7.4",
      "IBM Shares On Demand \u003c=3.7.4",
      "IBM Streaming \u003c=3.9.3",
      "IBM High-Speed Transfer Server for Cloud Pak for Integration (CP4I) \u003c=3.9.10"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-4435",
  "serverity": "\u4e2d",
  "submitTime": "2020-06-11",
  "title": "\u591a\u6b3eIBM\u4ea7\u54c1\u547d\u4ee4\u6267\u884c\u6f0f\u6d1e\uff08CNVD-2020-33144\uff09"
}

CVE-2020-4435 (GCVE-0-2020-4435)

Vulnerability from cvelistv5 – Published: 2020-06-10 12:57 – Updated: 2024-09-16 22:57

Summary

Certain IBM Aspera applications are vulnerable to arbitrary memory corruption based on the product configuration, which could allow an attacker with intimate knowledge of the system to execute arbitrary code or perform a denial-of-service (DoS) through the http fallback service. IBM X-Force ID: 180901.

Severity ?

7.5 (High)


                        
                          CVSS:3.0/I:H/AC:H/UI:N/A:H/AV:N/C:H/S:U/PR:L/RL:O/E:U/RC:C

CWE

Gain Privileges

Assigner

ibm

References

2 references

URL	Tags
https://www.ibm.com/support/pages/node/6221324	x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF

Impacted products

10 products

Vendor	Product	Version
IBM	Aspera Transfer Cluster Manager	Affected: 1.3.1
IBM	Aspera High-Speed Transfer Server	Affected: 3.9.3
IBM	Aspera Shares On Demand	Affected: 3.7.4
IBM	Aspera Application Platform On Demand	Affected: 3.7.4
IBM	Aspera Proxy Server	Affected: 1.4.3
IBM	Aspera Faspex On Demand	Affected: 3.7.4
IBM	Aspera Server On Demand	Affected: 3.7.4
IBM	Aspera High-Speed Transfer Server for Cloud Pak for Integration (CP4I)	Affected: 3.9.10
IBM	Aspera Streaming	Affected: 3.9.3
IBM	Aspera High-Speed Transfer Endpoint	Affected: 3.9.3

Date Public ?

2020-06-09 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T08:07:48.676Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.ibm.com/support/pages/node/6221324"
          },
          {
            "name": "ibm-aspera-cve20204435-command-exec (180901)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/180901"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Aspera Transfer Cluster Manager",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "1.3.1"
            }
          ]
        },
        {
          "product": "Aspera High-Speed Transfer Server",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "3.9.3"
            }
          ]
        },
        {
          "product": "Aspera Shares On Demand",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "3.7.4"
            }
          ]
        },
        {
          "product": "Aspera Application Platform On Demand",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "3.7.4"
            }
          ]
        },
        {
          "product": "Aspera Proxy Server",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "1.4.3"
            }
          ]
        },
        {
          "product": "Aspera Faspex On Demand",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "3.7.4"
            }
          ]
        },
        {
          "product": "Aspera Server On Demand",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "3.7.4"
            }
          ]
        },
        {
          "product": "Aspera High-Speed Transfer Server for Cloud Pak for Integration (CP4I)",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "3.9.10"
            }
          ]
        },
        {
          "product": "Aspera Streaming",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "3.9.3"
            }
          ]
        },
        {
          "product": "Aspera High-Speed Transfer Endpoint",
          "vendor": "IBM",
          "versions": [
            {
              "status": "affected",
              "version": "3.9.3"
            }
          ]
        }
      ],
      "datePublic": "2020-06-09T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Certain IBM Aspera applications are vulnerable to arbitrary memory corruption based on the product configuration, which could allow an attacker with intimate knowledge of the system to execute arbitrary code or perform a denial-of-service (DoS) through the http fallback service. IBM X-Force ID: 180901."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitCodeMaturity": "UNPROVEN",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "remediationLevel": "OFFICIAL_FIX",
            "reportConfidence": "CONFIRMED",
            "scope": "UNCHANGED",
            "temporalScore": 6.5,
            "temporalSeverity": "MEDIUM",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/I:H/AC:H/UI:N/A:H/AV:N/C:H/S:U/PR:L/RL:O/E:U/RC:C",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Gain Privileges",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-06-10T12:57:54.000Z",
        "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
        "shortName": "ibm"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.ibm.com/support/pages/node/6221324"
        },
        {
          "name": "ibm-aspera-cve20204435-command-exec (180901)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/180901"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@us.ibm.com",
          "DATE_PUBLIC": "2020-06-09T00:00:00",
          "ID": "CVE-2020-4435",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Aspera Transfer Cluster Manager",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "1.3.1"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Aspera High-Speed Transfer Server",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "3.9.3"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Aspera Shares On Demand",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "3.7.4"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Aspera Application Platform On Demand",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "3.7.4"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Aspera Proxy Server",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "1.4.3"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Aspera Faspex On Demand",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "3.7.4"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Aspera Server On Demand",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "3.7.4"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Aspera High-Speed Transfer Server for Cloud Pak for Integration (CP4I)",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "3.9.10"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Aspera Streaming",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "3.9.3"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Aspera High-Speed Transfer Endpoint",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "3.9.3"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "IBM"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Certain IBM Aspera applications are vulnerable to arbitrary memory corruption based on the product configuration, which could allow an attacker with intimate knowledge of the system to execute arbitrary code or perform a denial-of-service (DoS) through the http fallback service. IBM X-Force ID: 180901."
            }
          ]
        },
        "impact": {
          "cvssv3": {
            "BM": {
              "A": "H",
              "AC": "H",
              "AV": "N",
              "C": "H",
              "I": "H",
              "PR": "L",
              "S": "U",
              "UI": "N"
            },
            "TM": {
              "E": "U",
              "RC": "C",
              "RL": "O"
            }
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Gain Privileges"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.ibm.com/support/pages/node/6221324",
              "refsource": "CONFIRM",
              "title": "IBM Security Bulletin 6221324 (Aspera on Demand (AOD))",
              "url": "https://www.ibm.com/support/pages/node/6221324"
            },
            {
              "name": "ibm-aspera-cve20204435-command-exec (180901)",
              "refsource": "XF",
              "title": "X-Force Vulnerability Report",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/180901"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
    "assignerShortName": "ibm",
    "cveId": "CVE-2020-4435",
    "datePublished": "2020-06-10T12:57:54.172Z",
    "dateReserved": "2019-12-30T00:00:00.000Z",
    "dateUpdated": "2024-09-16T22:57:12.113Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2020-33144

CVE-2020-4435 (GCVE-0-2020-4435)

Tags

Sightings

Nomenclature