Privilege Escalation Vulnerability in IBM Notes and Domino
CVE-2017-1714

7.8HIGH

Key Information:

Vendor
IBM
Status
Client Application Access
Notes
Vendor
CVE Published:
8 February 2018

Summary

IBM Notes and Domino versions 8.5 and 9.0 have a vulnerability that permits an authenticated local user, lacking administrative privileges, to escalate their access to system-level privileges. This poses serious security risks, as it could allow a malicious user to exploit this flaw to gain elevated privileges and potentially execute unauthorized actions within the system.

Affected Version(s)

Client Application Access 1.0.0.1

Client Application Access 1.0.1.1

Client Application Access 1.0.1.2

References

http://www.ibm.com/support/docview.wss?uid=swg22010777
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/134633
x_refsource_MISC
http://www.ibm.com/support/docview.wss?uid=swg22010776
x_refsource_CONFIRM

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.