CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-5033

IBM Lotus Notes Traveler before 8.5.0.2 does not properly handle a "* *" argument sequence for a certain tell command, which allows remote authenticated users to obtain access to other users' data via a sync operation, related to storage of the data of multiple users within the same thread.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 42.7%

CVSS Severity

CVSS v2 Score 4.0

References

Products affected by CVE-2009-5033

Ibm » Lotus Notes Traveler » Version: 8.0

cpe:2.3:a:ibm:lotus_notes_traveler:8.0
Ibm » Lotus Notes Traveler » Version: 8.0.1

cpe:2.3:a:ibm:lotus_notes_traveler:8.0.1
Ibm » Lotus Notes Traveler » Version: 8.0.1.2

cpe:2.3:a:ibm:lotus_notes_traveler:8.0.1.2
Ibm » Lotus Notes Traveler » Version: 8.0.1.3

cpe:2.3:a:ibm:lotus_notes_traveler:8.0.1.3
Ibm » Lotus Notes Traveler » Version: 8.5.0.0

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.0.0
Ibm » Lotus Notes Traveler » Version: 8.5.0.1

cpe:2.3:a:ibm:lotus_notes_traveler:8.5.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-5033

Products

Pricing

Contact Us