CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:C/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
65.3%
The Evaluate LotusScript method in IBM Lotus Domino before 7.0.3 uses an incorrect security context for @ formula commands in some circumstances, which might allow remote authenticated users to gain privileges and obtain sensitive information.
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | lotus_domino | 6.5.5 | cpe:2.3:a:ibm:lotus_domino:6.5.5:*:*:*:*:*:*:* |
ibm | lotus_domino | 6.5.5 | cpe:2.3:a:ibm:lotus_domino:6.5.5:*:fp1:*:*:*:*:* |
ibm | lotus_domino | 6.5.5 | cpe:2.3:a:ibm:lotus_domino:6.5.5:*:fp2:*:*:*:*:* |
ibm | lotus_domino | 6.5.5 | cpe:2.3:a:ibm:lotus_domino:6.5.5:*:fp3:*:*:*:*:* |
ibm | lotus_domino | 6.5.6 | cpe:2.3:a:ibm:lotus_domino:6.5.6:*:*:*:*:*:*:* |
ibm | lotus_domino | 6.5.6 | cpe:2.3:a:ibm:lotus_domino:6.5.6:*:fp1:*:*:*:*:* |
ibm | lotus_domino | 7.0 | cpe:2.3:a:ibm:lotus_domino:7.0:*:*:*:*:*:*:* |
ibm | lotus_domino | 7.0.2 | cpe:2.3:a:ibm:lotus_domino:7.0.2:*:*:*:*:*:*:* |
ibm | lotus_domino | 7.0.2 | cpe:2.3:a:ibm:lotus_domino:7.0.2:*:fp1:*:*:*:*:* |
ibm | lotus_domino | 7.0.2 | cpe:2.3:a:ibm:lotus_domino:7.0.2:*:fp2:*:*:*:*:* |