CVE-2020-4670
published 2021-05-17CVE-2020-4670: IBM Planning Analytics Local 2.0 connects to a Redis server. The Redis server, an in-memory data structure store, running on the remote host is not protected…
critical9.1CVSS 3.1
AVNACLPRNUINSUCHIHAN
IBM Planning Analytics Local 2.0 connects to a Redis server. The Redis server, an in-memory data structure store, running on the remote host is not protected by password authentication. A remote attacker can exploit this to gain unauthorized access to the server. IBM X-Force ID: 186401.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | planning_analytics_cloud | — | — |
| ibm | planning_analytics_local | — | — |
| ibm | planning_analytics_local | — | — |