IBM2CE8D8DE3CAA2F06863116A000CCDC0D7F1B62C41B172D08BD50387C4C1D6C4FSecurity Bulletin: An unspecified vulnerability in Java SE results in a low confidentiality impact
EPSS
Percentile
58.9%
Summary
An unspecified vulnerability in Java SE related to the JNDI component could allow an unauthenticated attacker to obtain sensitive information resulting in a low confidentiality impact using unknown attack vectors.
Vulnerability Details
CVEID:CVE-2020-14781
**DESCRIPTION:**An unspecified vulnerability in Java SE related to the JNDI component could allow an unauthenticated attacker to obtain sensitive information resulting in a low confidentiality impact using unknown attack vectors.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/190099 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| DB2 Recovery Expert for LUW |
5.5
DB2 Recovery Expert for LUW|
5.5 IF1
DB2 Recovery Expert for LUW|
5.5 IF2
DB2 Recovery Expert for LUW|
5.5.0.1
DB2 Recovery Expert for LUW|
5.5.0.1 IF1
Remediation/Fixes
The product needs to be installed or upgraded to the latest available level using the 5.5.0.1 IF2 version available from Fix Central.
Workarounds and Mitigations
None
Related
EPSS
Percentile
58.9%