CVE-2020-5014

MEDIUM

IBM DataPower Gateway 10.0.0.0-10.0.1.0 - Authenticated Remote Code Execution via Server-Side Request Forgery

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-5014. PoCs published by copethomas.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2020-5014, which leverages an authenticated SSRF attack against IBM DataPower's internal Redis server to achieve remote code execution as the 'drouter' user. The exploit includes a custom Redis module and a Go-based toolchain to automate the attack.

Description

IBM DataPower Gateway V10 and V2018 could allow a local attacker with administrative privileges to execute arbitrary code on the system using a server-side requesr forgery attack. IBM X-Force ID: 193247.

Exploits (1)

nomisec WORKING POC 2 stars
by copethomas · poc
https://github.com/copethomas/datapower-redis-rce-exploit

This repository contains a functional exploit for CVE-2020-5014, which leverages an authenticated SSRF attack against IBM DataPower's internal Redis server to achieve remote code execution as the 'drouter' user. The exploit includes a custom Redis module and a Go-based toolchain to automate the attack.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: IBM DataPower versions before 10.0.1.2 and 2018.4.1.15
Auth required
Prerequisites: Authenticated access to DataPower WebGUI · Internal Redis server password (hardcoded)
mistral-large-3 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.ibm.com/support/pages/node/6426789
VDB Entry, Vendor Advisory vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/193247

Scores

CVSS v3 6.7
EPSS 0.0087
EPSS Percentile 54.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-918
Status published
Products (1)
ibm/datapower_gateway 10.0.0.0 - 10.0.1.1
Published Mar 08, 2021
Tracked Since Feb 18, 2026