i2 Analysts’ Notebook is potentially vulnerable to a memory corruption vulnerability
CVEID:CVE-2021-39050
**DESCRIPTION:**IBM i2 Analyst’s Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214440.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/214440 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)
Affected Product(s) | Version(s) |
---|---|
IBM i2 Analyst’s Notebook | IBM i2 Analyst’s Notebook 9.2.0 |
IBM i2 Analyst’s Notebook | All |
IBM i2 Analyst’s Notebook | IBM i2 Analyst’s Notebook 9.2.1 |
IBM i2 Analyst’s Notebook | IBM i2 Analyst’s Notebook 9.2.2 |
Please visit your customer portal and install the 9.3.1 continuous delivery update
None