CVE-2022-22483

Description

IBM Db2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to an information disclosure in some scenarios due to unauthorized access caused by improper privilege management when CREATE OR REPLACE command is used. IBM X-Force ID: 225979.

Related CPE's

a ibm db2 9.7.0.0 ****windows **

a ibm db2 10.1 ****windows **

a ibm db2 10.5 ****windows **

a ibm db2 11.1 ****windows **

a ibm db2 10.1 ****linux **

a ibm db2 10.1 ****unix **

a ibm db2 10.5 ****unix **

a ibm db2 11.1 ****unix **

a ibm db2 11.5 ****unix **

a ibm db2 9.7.0.0 ****linux **

References

https://www.ibm.com/support/pages/node/6618779

PatchVendor Advisory

ibm-db2-cve202222483-info-disc (225979)

VDB EntryVendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io