CVE Published: 04/09/2020 |
CVE Updated: 16/09/2024 |
CVE Year: 2020 Source: ibm |
Vendor: IBM |
Product: Aspera Connect Status : PUBLISHED
CVE-2020-4545 Description
IBM Aspera Connect 3.9.9 could allow a remote attacker to execute arbitrary code on the system, caused by improper loading of Dynamic Link Libraries by the import feature. By persuading a victim to open a specially-crafted .DLL file, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 183190.