CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-4623

IBM i2 iBase 8.9.13 could allow a local authenticated attacker to execute arbitrary code on the system, caused by a DLL search order hijacking flaw. By using a specially-crafted .DLL file, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 184984.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.5%

CVSS Severity

CVSS v3 Score 7.7

CVSS v2 Score 4.4

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/184984
https://www.ibm.com/support/pages/node/6474857
https://exchange.xforce.ibmcloud.com/vulnerabilities/184984
https://www.ibm.com/support/pages/node/6474857

Products affected by CVE-2020-4623

Ibm » I2 Ibase » Version: 8.9.13

cpe:2.3:a:ibm:i2_ibase:8.9.13
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-4623

Products

Pricing

Contact Us