6.3
CVE-2007-5700
- EPSS 1.19%
- Veröffentlicht 29.10.2007 21:46:00
- Zuletzt bearbeitet 16.06.2026 22:46:39
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The Evaluate LotusScript method in IBM Lotus Domino before 7.0.3 uses an incorrect security context for @ formula commands in some circumstances, which might allow remote authenticated users to gain privileges and obtain sensitive information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Lotus Domino Version6.5.5
Ibm ≫ Lotus Domino Version6.5.5 Editionfp1
Ibm ≫ Lotus Domino Version6.5.5 Editionfp2
Ibm ≫ Lotus Domino Version6.5.5 Editionfp3
Ibm ≫ Lotus Domino Version6.5.6
Ibm ≫ Lotus Domino Version6.5.6 Editionfp1
Ibm ≫ Lotus Domino Version7.0
Ibm ≫ Lotus Domino Version7.0.2
Ibm ≫ Lotus Domino Version7.0.2 Editionfp1
Ibm ≫ Lotus Domino Version7.0.2 Editionfp2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.19% | 0.638 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.3 | 6.8 | 6.9 |
AV:N/AC:M/Au:S/C:C/I:N/A:N
|
http://secunia.com/advisories/27321
http://www.securityfocus.com/bid/26176
http://www.vupen.com/english/advisories/2007/3598
http://osvdb.org/40951
http://www-1.ibm.com/support/docview.wss?uid=swg21273266
https://exchange.xforce.ibmcloud.com/vulnerabilities/37369