Vulnerability Description
IBM Notes 8.5 and 9.0 could allow an attacker to execute arbitrary code on the system, caused by an error related to multiple untrusted search path. A local attacker could exploit this vulnerability to DLL hijacking to execute arbitrary code on the system or cause the application to crash. IBM X-Force ID: 139565.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Notes | 8.5 |
Related Weaknesses (CWE)
References
- http://www.ibm.com/support/docview.wss?uid=swg22014201PatchVendor Advisory
- http://www.securityfocus.com/bid/103401Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1040563Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/139565VDB EntryVendor Advisory
- http://www.ibm.com/support/docview.wss?uid=swg22014201PatchVendor Advisory
- http://www.securityfocus.com/bid/103401Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1040563Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/139565VDB EntryVendor Advisory
FAQ
What is CVE-2018-1437?
CVE-2018-1437 is a vulnerability with a CVSS score of 7.8 (HIGH). IBM Notes 8.5 and 9.0 could allow an attacker to execute arbitrary code on the system, caused by an error related to multiple untrusted search path. A local attacker could exploit this vulnerability t...
How severe is CVE-2018-1437?
CVE-2018-1437 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-1437?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Notes.