CVE-2020-4261

Опубликовано: 14 мая 2020

Источник: nvd

CVSS3: 7.8

CVSS2: 6.9

EPSS Низкий

Описание

IBM i2 Intelligent Analyis Platform 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 175644.

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/175644
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6209081
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/175644
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6209081
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:ibm:i2_analysts_notebook:9.2.1:*:*:*:-:*:*:*

cpe:2.3:a:ibm:i2_analysts_notebook:9.2.1:*:*:*:premium:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 22%

0.0007

Низкий

7.8 High

CVSS3

7.8 High

CVSS3

6.9 Medium

CVSS2

Дефекты

CWE-787

Связанные уязвимости

GHSA-39c2-pr35-fgxx

github

больше 3 лет назад

EPSS

Процентиль: 22%

0.0007

Низкий

7.8 High

CVSS3

7.8 High

CVSS3

6.9 Medium

CVSS2

Дефекты

CWE-787