Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM99842D64DA01FC5792CF8479583E3E23A5E9B6BB51C5900A1234A197A5E4ED07
HistoryOct 05, 2020 - 4:32 p.m.

Security Bulletin: Multiple vulnerabilites in IBM Db2 affect IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise

2020-10-0516:32:31
www.ibm.com
9

0.002 Low

EPSS

Percentile

52.8%

JSON

Summary

IBM Db2 is shipped with IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise. Vulnerabilities have been identified in IBM Db2 and the information about their fixes are published in security bulletins.

Vulnerability Details

Refer to the security bulletin(s) listed in the Remediation/Fixes section

Affected Products and Versions

Affected Product(s) Version(s)
Cloud Orchestrator 2.5.0.10

Remediation/Fixes

The recommended solution is to manually upgrade to the appropriate fix on IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise 2.5.0.10.

Consult the following IBM Db2 security bulletins for the vulnerability details and information about their fixes:

Security: IBM® Db2® is vulnerable to privilege escalation (CVE-2020-4230)

Security: IBM® Db2® is vulnerable to denial of service (CVE-2020-4135)

Security: Multiple buffer overflow vulnerabilities exist in IBM® Db2® leading to privilege escalation (CVE-2020-4204)

Security: IBM® Db2® is vulnerable to denial of service (CVE-2020-4200).

Security: IBM® Db2® is vulnerable to denial of service (CVE-2020-4161)

Workarounds and Mitigations

None

CPENameOperatorVersion
ibm smartcloud orchestratoreq2.5.0.10

Related

ibm 27
nessus 2
nvd 5
cve 5
prion 5
cvelist 5
ibm
ibm
Security Bulletin: Multiple vulnerabilities in DB2
2020-06-19 08:58:33
Security Bulletin: Multiple vulnerabilities in IBM DB2 affect IBM Operations Analytics Predictive Insights (CVE-2020-4230, CVE-2020-4135, CVE-2020-4200, CVE-2020-4161, CVE-2020-4204)
2020-08-28 18:24:46
Security Bulletin: Multiple vulnerabilities have been identified in DB2 shipped with Predictive Maintenance and Quality and Predictive Maintenance Insights
2020-06-17 22:46:48
nessus
nessus
IBM DB2 9.7 < FP11 39672 / 10.1 < FP6 39678 / 10.5 < FP10 39688 / 11.1.4 < FP5 39693 / 11.5 < FP0 39711 Multiple Vulnerabilities (UNIX)
2020-02-28 00:00:00
IBM DB2 9.7 < FP11 39672 / 10.1 < FP6 39678 / 10.5 < FP10 39688 / 11.1.4 < FP5 39693 / 11.5 < FP0 39711 Multiple Vulnerabilities (Windows)
2020-02-28 00:00:00
nvd
nvd
CVE-2020-4230
2020-02-19 16:15:12
CVE-2020-4161
2020-02-19 16:15:11
CVE-2020-4200
2020-02-19 16:15:11
cve
cve
CVE-2020-4230
2020-02-19 16:15:12
CVE-2020-4161
2020-02-19 16:15:11
CVE-2020-4200
2020-02-19 16:15:11
prion
prion
Privilege escalation
2020-02-19 16:15:00
Design/Logic Flaw
2020-02-19 16:15:00
Design/Logic Flaw
2020-02-19 16:15:00
cvelist
cvelist
CVE-2020-4230
2020-02-18 00:00:00
CVE-2020-4161
2020-02-18 00:00:00
CVE-2020-4200
2020-02-18 00:00:00

0.002 Low

EPSS

Percentile

52.8%

JSON
Related for 99842D64DA01FC5792CF8479583E3E23A5E9B6BB51C5900A1234A197A5E4ED07
ibm27nessus2nvd5cve5prion5cvelist5