Description
IBM Db2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to an information disclosure in some scenarios due to unauthorized access caused by improper privilege management when CREATE OR REPLACE command is used. IBM X-Force ID: 225979.
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/225979
VDB EntryVendor Advisory
https://www.ibm.com/support/pages/node/6618779
PatchVendor Advisory
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.5 · Medium
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Modified
Published
2022-09-13T21:15:09.107
2 years agoLast modified
2023-09-21T17:15:09.930
1 year ago