CVE-2020-4623

Summary

IBM i2 iBase 8.9.13 could allow a local authenticated attacker to execute arbitrary code on the system, caused by a DLL search order hijacking flaw. By using a specially-crafted .DLL file, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 184984.

Affected Software

VendorProductVersion RangeStatus
IBMi2 iBase8.9.13affected

Weaknesses

  • Gain Privileges

ADP Enrichment

CVE Program Container

Additional References

References