CVE-2021-29868
- EPSS 0.04%
- Veröffentlicht 27.10.2021 16:15:07
- Zuletzt bearbeitet 21.11.2024 06:01:56
IBM i2 iBase 8.9.13 and 9.0.0 could allow a local attacker to obtain sensitive information due to insufficient session expiration. IBM X-Force ID: 206213.
CVE-2020-4623
- EPSS 0.09%
- Veröffentlicht 26.07.2021 12:15:08
- Zuletzt bearbeitet 21.11.2024 05:33:00
IBM i2 iBase 8.9.13 could allow a local authenticated attacker to execute arbitrary code on the system, caused by a DLL search order hijacking flaw. By using a specially-crafted .DLL file, an attacker could exploit this vulnerability to execute arbit...
CVE-2020-4588
- EPSS 0.37%
- Veröffentlicht 30.10.2020 14:15:13
- Zuletzt bearbeitet 21.11.2024 05:32:56
IBM i2 iBase 8.9.13 could allow an attacker to upload arbitrary executable files which, when executed by an unsuspecting victim could result in code execution. IBM X-Force ID: 184579.
CVE-2020-4584
- EPSS 0.19%
- Veröffentlicht 30.10.2020 14:15:12
- Zuletzt bearbeitet 21.11.2024 05:32:56
IBM i2 iBase 8.9.13 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 184574.