CVE-2010-4546

CWE-2644 documents4 sources

Severity

4.0MEDIUM

EPSS

0.1%

top 66.59%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM Lotus Notes Traveler

Timeline

PublishedDec 16

Latest updateMay 17

Description

IBM Lotus Notes Traveler before 8.5.1.2 does not reject an attachment download request for an e-mail message with a Prevent Copy attribute, which allows remote authenticated users to bypass intended access restrictions via this request.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

▶NVDibm/lotus_notes_traveler8.5.1.1+7

🔴Vulnerability Details

GHSA

GHSA-fj5m-5qc8-rw48: IBM Lotus Notes Traveler before 8↗2022-05-17

▶

CVEList

CVE-2010-4546: IBM Lotus Notes Traveler before 8↗2010-12-16

▶

💥Exploits & PoCs

Exploit-DB

Adobe Flash Player 9/10 - SWF Version Null Pointer Dereference Denial of Service↗2008-10-02

▶