CVE-2020-4343

Name of the Vulnerable Software and Affected Versions IBM i2 Intelligent Analyis Platform version 9.2.1

Description The issue is caused by a memory corruption, allowing a remote attacker to execute arbitrary code on the system. This can be achieved by persuading a victim to open a specially crafted file, which could also cause the application to crash.

Recommendations For IBM i2 Intelligent Analyis Platform version 9.2.1, consider restricting access to files from untrusted sources to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid opening specially crafted files that could trigger the memory corruption issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.