CVE-2018-1437

Summary

IBM Notes 8.5 and 9.0 could allow an attacker to execute arbitrary code on the system, caused by an error related to multiple untrusted search path. A local attacker could exploit this vulnerability to DLL hijacking to execute arbitrary code on the system or cause the application to crash. IBM X-Force ID: 139565.

Affected Software

VendorProductVersion RangeStatus
IBMNotes8.5.3.6affected
IBMNotes8.5affected
IBMNotes8.5.1affected
IBMNotes8.5.1.5affected
IBMNotes8.5.2affected
IBMNotes8.5.2.4affected
IBMNotes8.5.3affected
IBMNotes9.0.1affected
IBMNotes9.0affected
IBMNotes8.5.0.2affected
IBMNotes9.0.1.9affected

Weaknesses

  • Gain Privileges

ADP Enrichment

CVE Program Container

Additional References

References