CVE-2017-1714

Published Feb 13, 2018

Last updated 5 years ago

CVSS high 7.8

Overview

Description: IBM Notes and Domino NSD 8.5 and 9.0 could allow an authenticated local user without administrative privileges to gain System privilege. IBM X-Force ID: 134633.
Source: psirt@us.ibm.com
NVD status: Analyzed

Risk scores

CVSS 3.0

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:notes:8.5.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0295E4E8-6A3E-44AE-935A-3BF4282AA4A4"
          },
          {
            "criteria": "cpe:2.3:a:ibm:notes:8.5.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BEFB0E44-E747-4685-8273-EF12E556D72B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:notes:8.5.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4DB11113-37E2-4A92-A100-BA2BD01043FB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:notes:8.5.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02D60EB9-26DF-4B03-923B-12DE5D8E5D94"
          },
          {
            "criteria": "cpe:2.3:a:ibm:notes:9.0.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9327CB4C-30F0-47E0-9D3D-445CE49F6C19"
          },
          {
            "criteria": "cpe:2.3:a:ibm:notes:9.0.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B784D714-6267-4314-AAC1-E8D1E8479F05"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:client_application_access:1.0.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EEFB3033-7E8C-4042-A93D-0D9E43456120"
          },
          {
            "criteria": "cpe:2.3:a:ibm:client_application_access:1.0.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B201085B-5565-45DA-B82B-8E34B808B5FB"
          },
          {
            "criteria": "cpe:2.3:a:ibm:client_application_access:1.0.1.1:interim_fix_1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C4E31A15-D77C-4DF7-A0A3-B4FA3D87892E"
          },
          {
            "criteria": "cpe:2.3:a:ibm:client_application_access:1.0.1.2:interim_fix_1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B20619CD-4A2C-499D-9349-81283A76B0C2"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References