IBM.i2.Analyst.Notebook.CVE-2020-4264.Memory.Corruption

description-logoDescription

This indicates an attack attempt to exploit a Memory Corruption vulnerability in IBM i2 Intelligent Analysis Platform.
The vulnerability is a result of the application's failure to properly parse a specially-crafted file. An attacker could exploit this vulnerability to execute arbitrary code on the vulnerable system by persuading a victim to open a specially-crafted file.

affected-products-logoAffected Products

IBM i2 Analysts Notebook 9.2.1
IBM i2 Analysts Notebook Premium 9.2.1

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.ibm.com/support/pages/node/6209081

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-05-19 15.846 Name:FG-VD-20-021_IBM.
0day:IBM.
i2.
Analyst.
Notebook.
CVE-2020-4264.
Memory.
Corruption
2020-05-19 15.846 Severity:critical:high
2020-03-09 15.790 Default_action:pass:drop
2020-02-25 15.783