Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-29257

Published: 26/04/2023 Updated: 11/05/2023
CVSS v3 Base Score: 7.2 | Impact Score: 5.9 | Exploitability Score: 1.2
VMScore: 0
Subscribe to Db2

Vulnerability Summary

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to remote code execution as a database administrator of one database may execute code or read/write files from another database within the same instance. IBM X-Force ID: 252011.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

ibm db2

ibm db2 10.5

ibm db2 11.1.4

References

NVD-CWE-noinfohttps://www.ibm.com/support/pages/node/6985691https://exchange.xforce.ibmcloud.com/vulnerabilities/252011https://security.netapp.com/advisory/ntap-20230511-0010/https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886insecure direct object referenceCVE-2024-34342file inclusionCVE-2024-34562CVE-2024-34347CVE-2024-26026CVE-2024-4647unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook