Command Injection Vulnerability in IBM Lotus Protector for Mail Security
CVE-2014-0886

Currently unrated

Key Information:

Vendor
IBM
Status
Lotus Protector For Mail Security
Vendor
CVE Published:
25 March 2014

Summary

The Admin Web UI in IBM Lotus Protector for Mail Security versions before 2.8.1-22905 permits remote authenticated users to circumvent intended access controls, allowing them to execute arbitrary commands through unspecified vectors. This poses significant security risks, as it can lead to unauthorized access and manipulation of mail security settings.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21668124
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/91172
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.