CVE-2020-4450

CRITICAL EXPLOITED IN THE WILD

IBM WebSphere Application Server 8.5.0.0-8.5.5.17 - Remote Code Execution via Untrusted Data Deserialization

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2020-4450 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io). EIP tracks 1 public exploit.

AI-analyzed exploit summary The repository contains minimal and incomplete content, with no functional exploit code for CVE-2020-4450. The files include a placeholder README, a trivial 'hello.go', and a 'main.go' with unrelated CVE data but no actual exploit logic.

Description

IBM WebSphere Application Server 8.5 and 9.0 traditional could allow a remote attacker to execute arbitrary code on the system with a specially-crafted sequence of serialized objects. IBM X-Force ID: 181231.

Exploits (1)

vulncheck_xdb STUB
remote
https://github.com/yonggui-li/CVE-2020-4464-and-CVE-2020-4450

The repository contains minimal and incomplete content, with no functional exploit code for CVE-2020-4450. The files include a placeholder README, a trivial 'hello.go', and a 'main.go' with unrelated CVE data but no actual exploit logic.

Classification
Stub 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: Unknown
No auth needed
devstral-2 · analyzed Feb 26, 2026 Full analysis →

References (3)

Core 3
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.ibm.com/support/pages/node/6220294
VDB Entry, Vendor Advisory vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/181231
Third Party Advisory, VDB Entry x_refsource_misc
https://www.zerodayinitiative.com/advisories/ZDI-20-689/

Scores

CVSS v3 9.8
EPSS 0.7186
EPSS Percentile 98.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2024-09-18
InTheWild.io 2024-09-18
CWE
CWE-502
Status published
Products (1)
ibm/websphere_application_server 8.5.0.0 - 8.5.5.18
Published Jun 05, 2020
Tracked Since Feb 18, 2026