CVE-2013-4068

Published Sep 20, 2013

Last updated 7 years ago

CVSS info 7.1

Overview

Description: Buffer overflow in iNotes in IBM Domino 8.5.3 before FP5 IF1 and 9.0 before IF4 allows remote authenticated users to execute arbitrary code via unspecified vectors, aka SPR PTHN9ADPA8.
Source: psirt@us.ibm.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.1
Impact score: 10
Exploitability score: 3.9
Vector string: AV:N/AC:H/Au:S/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "350ACC22-669F-4429-A525-36F56EF9678C"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C068055-FB7A-4AFB-AF29-28238ECF126F"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1ACB4B2C-CCE1-4A0A-B962-B8C208869589"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BC1A8676-B2CA-49FF-A43E-EAC62170BF82"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:8.5.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71ADC0C5-36E9-426E-B302-56804B1800BB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_domino:9.0.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7025B610-6988-4A78-B0ED-6FB728AA6C28"
          },
          {
            "criteria": "cpe:2.3:a:ibm:lotus_inotes:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ADBAA800-3F74-45C5-AE58-EF76A35186D0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References