Email Information Disclosure Vulnerability in IBM iNotes
CVE-2017-1214
5.7MEDIUM
Summary
IBM iNotes versions 8.5 and 9.0 are susceptible to a vulnerability that enables remote attackers to send specially crafted emails. When the victim opens such an email, it could lead to unintended information disclosure, thereby compromising sensitive data. This vulnerability emphasizes the need for organizations to implement robust email security protocols and awareness training to mitigate potential threats.
Affected Version(s)
iNotes 9.0
iNotes 8.5.3
iNotes 8.5.2
References
CVSS V3.1
Score:
5.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved