Vulnerability Database

289,871

Total vulnerabilities in the database

CVE-2018-1437

IBM Notes 8.5 and 9.0 could allow an attacker to execute arbitrary code on the system, caused by an error related to multiple untrusted search path. A local attacker could exploit this vulnerability to DLL hijacking to execute arbitrary code on the system or cause the application to crash. IBM X-Force ID: 139565.

  • Published: Mar 14, 2018
  • Updated: Apr 13, 2023
  • CVE: CVE-2018-1437
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.8
  • AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: High
  • Score: 9.3
  • AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
ibm / notes 8.5 8.5.x
ibm / notes 8.5.1 8.5.1.x
ibm / notes 8.5.2 8.5.2.x
ibm / notes 8.5.3 8.5.3.x
ibm / notes 9.0 9.0.x
ibm / notes 9.0.1 9.0.1.x
ibm / notes 8.5.3.6 8.5.3.6.x
ibm / notes 8.5.1.5 8.5.1.5.x
ibm / notes 8.5.2.4 8.5.2.4.x
ibm / notes 9.0.1.9 9.0.1.9.x
ibm / notes 8.5.0.2 8.5.0.2.x