CVE-2020-4723
Description
IBM i2 Analyst Notebook 9.2.0 and 9.2.1 could allow a local attacker to execute arbitrary code on the system, caused by a memory corruption. By persuading a victim to open a specially-crafted file, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 187873.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A memory corruption vulnerability in IBM i2 Analyst Notebook 9.2.0 and 9.2.1 allows local attackers to execute arbitrary code via a specially crafted file.
Vulnerability
IBM i2 Analyst Notebook versions 9.2.0 and 9.2.1 are affected by a memory corruption vulnerability (CVE-2020-4723) that can be exploited by opening a specially crafted file [1].
Exploitation
An attacker must persuade a victim to open a malicious file. No authentication is required, but user interaction is necessary [1].
Impact
Successful exploitation allows arbitrary code execution with the privileges of the victim, potentially leading to full system compromise [1].
Mitigation
IBM has addressed this vulnerability in a security update; users should upgrade to the latest version as recommended in the advisory [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: 9.2.0, 9.2.1
- IBM/i2 Analyst Notebookv5Range: 9.2.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- exchange.xforce.ibmcloud.com/vulnerabilities/187873mitrevdb-entryx_refsource_XF
- www.ibm.com/support/pages/node/6356497mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.