CVE-2020-4285

Name of the Vulnerable Software and Affected Versions IBM i2 Intelligent Analyis Platform version 9.2.1

Description The issue is caused by a memory corruption error, allowing a remote attacker to execute arbitrary code on the system. This can be achieved by persuading a victim to open a specially-crafted document, potentially executing arbitrary code with the victim's privileges or causing the application to crash.

Recommendations For IBM i2 Intelligent Analyis Platform version 9.2.1, consider restricting access to specially-crafted documents until a patch is available. As a temporary workaround, avoid opening untrusted documents to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.