CVE-2012-0187IBM Lotus Expeditor vulnerability

4 documents4 sources
Severity
9.3CRITICALNVD
EPSS
0.5%
top 35.97%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Lotus Expeditor
Timeline
PublishedJun 22
Latest updateMay 4

Description

Untrusted search path vulnerability in IBM Lotus Expeditor 6.1.x and 6.2.x before 6.2 FP5+Security Pack allows local users to gain privileges via a Trojan horse DLL in the current working directory.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDibm/lotus_expeditor6 versions+5

🔴Vulnerability Details

2
GHSA
GHSA-wg8h-q3rc-9wvf: Untrusted search path vulnerability in IBM Lotus Expeditor 62022-05-04
CVEList
CVE-2012-0187: Untrusted search path vulnerability in IBM Lotus Expeditor 62012-06-22

💬Community

1
Bugzilla
CVE-2012-5920 GWT: unknown XSS flaw2012-10-31
CVE-2012-0187 — IBM Lotus Expeditor vulnerability | cvebase