Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2011-0920
ibm lotus domino
remote console
cve-2011-0920
authentication bypass
arbitrary code execution
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.4 High
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
77.6%
The Remote Console in IBM Lotus Domino, when a certain unsupported configuration involving UNC share pathnames is used, allows remote attackers to bypass authentication and execute arbitrary code via unspecified vectors, aka SPR PRAD89WGRS.
Affected configurations
Node
ibmlotus_domino
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm:lotus_domino | ibm lotus domino | eq | * |
Related
nvd
nvd
zdi
zdi
prion
prion
Authentication flaw
2011-02-08 22:00:00
Authentication flaw
2011-03-25 19:55:00
Authentication flaw
2016-06-29 01:59:00
cvelist
cvelist
cve
cve
CVE-2011-1519
2011-03-25 19:55:01
CVE-2016-0304
2016-06-29 01:59:06
openvas
openvas
IBM Lotus Domino Multiple Remote Buffer Overflow Vulnerabilities
2011-05-09 00:00:00
nessus
nessus
IBM Lotus Domino 8.5.x < 8.5.3 Multiple Vulnerabilities
2013-04-26 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.4 High
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
77.6%
Related for CVE-2011-0920