Local Command Execution Vulnerability in IBM Notes Diagnostics

Local Command Execution Vulnerability in IBM Notes Diagnostics

CVE-2018-1411 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

IBM Notes Diagnostics (IBM Client Application Access and IBM Notes) could allow a local user to execute commands on the system. By crafting a command line sent via the shared memory IPC, which could be tricked into executing an executable chosen by the attacker. IBM X-Force ID: 138710.

Learn more about our User Device Pen Test.