CVE-2015-2023
high
CVSS v3
8.8
CVSS v2
7.2
VIR risk
8.8
Description
Buffer overflow in IBM i Access 7.1 on Windows allows local users to gain privileges via unspecified vectors.
Predictions
Exploit likelihood
82%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: psirt@us.ibm.com — http://www-01.ibm.com/support/docview.wss?uid=nas8N1020996
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| ibm | i_access | 7.1 | |
References
- http://www-01.ibm.com/support/docview.wss?uid=nas8N1020996
- http://www-01.ibm.com/support/docview.wss?uid=swg1SI57907
- https://www.exploit-db.com/exploits/38751/
- http://www-01.ibm.com/support/docview.wss?uid=nas8N1020996
- http://www-01.ibm.com/support/docview.wss?uid=swg1SI57907
- https://www.exploit-db.com/exploits/38751/
CWEs
CWE-119
Verify integrity in audit chain (admin only). AS-IS.