CVE-2020-4839

MEDIUM

IBM Host Firmware for LC-class Systems - Stack-Based Buffer Overflow

Title source: llm
STIX 2.1

Description

IBM Host firmware for LC-class Systems is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A remote privileged attacker could exploit this vulnerability and cause a denial of service. IBM X-Force ID: 190037.

References (2)

Core 2
Core References
Vendor Advisory x_refsource_confirm
https://www.ibm.com/support/pages/node/6454303
VDB Entry, Vendor Advisory vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/190037

Scores

CVSS v3 4.9
EPSS 0.0152
EPSS Percentile 71.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-787
Status published
Products (3)
ibm/8335-gca_firmware op820
ibm/8335-gta_firmware op820
ibm/8335-gtb_firmware op820
Published May 25, 2021
Tracked Since Feb 18, 2026