CVE-2020-4722

Vulnerability

IBM i2 Analyst's Notebook versions 9.2.0 and 9.2.1 contain a memory corruption vulnerability [1]. An attacker can trigger this by persuading a victim to open a specially-crafted file. The exact code path resides in the file parsing logic of the application, where insufficient bounds checking or handling of malformed data leads to memory corruption [1].

Exploitation

An attacker must have local access to the system or be able to deliver a malicious file to the victim. No authentication is required, but user interaction is necessary—the victim must open the crafted file using the vulnerable application [1]. The attacker crafts a file that exploits the memory corruption, and upon opening, the corrupt memory state can be leveraged to execute arbitrary code.

Impact

Successfully exploiting the vulnerability allows an attacker to execute arbitrary code on the victim's system with the privileges of the logged-in user [1]. This leads to full compromise of confidentiality, integrity, and availability (CIA) — the attacker can read, modify, or delete data, install malware, or take other malicious actions.

Mitigation

IBM has addressed this vulnerability in a security update. Users should apply the fix provided in IBM i2 Analyst's Notebook version 9.2.2 or later, as per the security bulletin [1]. No workaround is available; upgrading to the fixed version is the recommended mitigation.