Published: 19/11/2020 Updated: 01/12/2020
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local malicious user to execute arbitrary code on the system with root privileges.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

ibm db2 10.5

ibm db2 11.1

ibm db2 11.5