EUVD-2021-7997

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

IBM Db2 versions may expose sensitive data if view creation enabled and AUTO_REVAL set incorrectly.

Reporter	Title	Published	Views	Family All 26
IBM Security Bulletins	Security Bulletin: Security vulnerabilities have been identified in IBM DB2 used by IBM Security Verify Governance, Identity Manager virtual appliance component	30 Mar 202217:27	–	ibm
IBM Security Bulletins	Security Bulletin: IBM® Db2® is vulnerable to an information disclosure (CVE-2021-20579)	4 Aug 202118:30	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple IBM DB2 Server Vulnerabilities Affect IBM Emptoris Strategic Supply Management Platform	20 Sep 202105:28	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM DB2 supported by IBM Security Verify Governance	14 Apr 202213:25	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities have been identified in IBM DB2 used by IBM Security Verify Governance, Identity Manager software component	1 Mar 202221:21	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple IBM Db2 Server Vulnerabilities Affect IBM Emptoris Program Management	20 Sep 202105:29	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified in DB2 that affect the IBM Performance Management product.	18 Dec 202100:58	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in IBM Db2 affect IBM Spectrum Protect Server (CVE-2021-29777, CVE-2021-20579, CVE-2021-29703, CVE-2020-4885, CVE-2020-4945)	10 Dec 202115:38	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple IBM Db2 Server Vulnerabilities Affect IBM Emptoris Supplier Lifecycle Mgmt	20 Sep 202105:27	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM DB2 shipped with IBM Maximo Asset Management (CVE-2021-20579, CVE-2020-4945, CVE-2021-29777, CVE-2020-4885, CVE-2021-29703)	11 Aug 202117:40	–	ibm

[
  {
    "enisaIdVendor": [
      {
        "id": "1a975bc9-b4f9-39f6-8d32-a9214f390db0",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "4d57bd2a-b0ca-3bf2-92d6-403d0e43db55",
        "product": {
          "name": "Db2 for Linux, UNIX and Windows"
        },
        "product_version": "10.5"
      },
      {
        "id": "7ccdc508-2a6e-3c62-bb12-c38f4e1d2fee",
        "product": {
          "name": "Db2 for Linux, UNIX and Windows"
        },
        "product_version": "9.7"
      },
      {
        "id": "ae12d142-d95e-3004-9085-3519aca8c941",
        "product": {
          "name": "Db2 for Linux, UNIX and Windows"
        },
        "product_version": "10.1"
      },
      {
        "id": "c0550f31-3081-365f-b80b-e18a71ba425c",
        "product": {
          "name": "Db2 for Linux, UNIX and Windows"
        },
        "product_version": "11.5"
      },
      {
        "id": "d6c7c973-dd41-3d25-a578-6d475c583954",
        "product": {
          "name": "Db2 for Linux, UNIX and Windows"
        },
        "product_version": "11.1"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/6466369
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/199283
security	www.security.netapp.com/advisory/ntap-20210720-0006/

03 Oct 2025 20:07Current

6.8Medium risk

Vulners AI Score6.8

CVSS 35.9

CVSS 23.5

CVSS 3.16.5

EPSS0.0027