I2 Ibase

i2_ibase

Vendor: Ibm • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-29868 1Ibm 1I2 Ibase Nov 21, 2024 Oct 27, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 IBM i2 iBase 8.9.13 and 9.0.0 could allow a local attacker to obtain sensitive information due to insufficient session expiration. IBM X-Force ID: 206213.
CVE-2020-4623 1Ibm 1I2 Ibase Nov 21, 2024 Jul 26, 2021 N/A· v4 6.5 MEDIUM· v3 4.4 MEDIUM· v2 IBM i2 iBase 8.9.13 could allow a local authenticated attacker to execute arbitrary code on the system, caused by a DLL search order hijacking flaw. By using a specially-crafted .DLL file, an attacker could exploit this...Show more IBM i2 iBase 8.9.13 could allow a local authenticated attacker to execute arbitrary code on the system, caused by a DLL search order hijacking flaw. By using a specially-crafted .DLL file, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 184984.Show less
CVE-2020-4588 1Ibm 1I2 Ibase Jun 17, 2026 Oct 30, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 IBM i2 iBase 8.9.13 could allow an attacker to upload arbitrary executable files which, when executed by an unsuspecting victim could result in code execution. IBM X-Force ID: 184579.
CVE-2020-4584 1Ibm 1I2 Ibase Jun 17, 2026 Oct 30, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 IBM i2 iBase 8.9.13 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system....Show more IBM i2 iBase 8.9.13 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 184574.Show less