CVE-2020-4724

Summary

IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system.

Affected Software

VendorProductVersion RangeStatus
IBMi2 Analyst Notebook9.2.1affected
IBMi2 Analyst Notebook9.2.0affected

Weaknesses

  • Gain Privileges

ADP Enrichment

CVE Program Container

Additional References

References