IBM DB2 安全漏洞

🗓️ 10 Mar 2021 00:00:00Reported by China National Vulnerability Database of Information SecurityType

cnnvd

cnnvd🔗 www.cnnvd.org.cn👁 1 Views

IBM DB2 security flaw allows bypassing access via insecure file permissions to read or modify data.

Reporter	Title	Published	Views	Family All 47
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities may affect IBM DB2 shipped with Predictive Maintenance and Quality and Predictive Maintenance Insights On-Premises	18 May 202115:06	–	ibm
IBM Security Bulletins	Security Bulletin: IBM i2 Analyze is affected by multiple DB2 vulnerabilities	30 Jul 202105:04	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Db2 affect IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise	30 Apr 202114:38	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities found in IBM DB2 which is shipped with IBM® Intelligent Operations Center(CVE-2020-5024, CVE-2020-5025, CVE-2020-4976)	8 Sep 202213:28	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified in IBM® Db2® which is shipped with IBM Operations Analyticsg Predictive Insights	13 Jun 202123:31	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified in DB2 that affect the IBM Performance Management product.	18 Dec 202101:03	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified in DB2 that affect the IBM Performance Management product.	18 Dec 202100:58	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities have been identified in IBM Db2 shipped with WebSphere Remote Server	14 Dec 202120:41	–	ibm
IBM Security Bulletins	Security Bulletin: IBM DB2 Server Vulnerabilities Affect IBM Emptoris Program Management	23 Apr 202104:39	–	ibm
IBM Security Bulletins	Security Bulletin: IBM® Db2® db2fm is vulnerable to a buffer overflow (CVE-2020-5025)	26 Apr 202119:58	–	ibm

Source	Link
ibm	www.ibm.com/support/pages/node/6427859
security	www.security.netapp.com/advisory/ntap-20210409-0003/
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/192469
vigilance	www.vigilance.fr/vulnerability/IBM-DB2-read-write-access-via-Weak-File-Permissions-36433
ibm	www.ibm.com/blogs/psirt/security-bulletin-vulnerabilities-in-ibm-db2-affect-ibm-spectrum-protect-server-cve-2020-5024-cve-2020-5025-cve-2020-4976/
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2021120915
ibm	www.ibm.com/blogs/psirt/security-bulletin-ibm-db2-server-vulnerabilities-affect-ibm-emptoris-program-management/
ibm	www.ibm.com/support/pages/node/6489495
nvd	www.nvd.nist.gov/vuln/detail/CVE-2020-4976
auscert	www.auscert.org.au/bulletins/ESB-2021.3129

24 May 2026 00:00Current

5.9Medium risk

Vulners AI Score5.9

CVSS 27.2

CVSS 3.17.8

CVSS 38.4

EPSS0.00287

IBM database insecure file permissions bypass access controls read data modify data