Lucene search

[email protected]NVD:CVE-2023-28526

HistoryDec 09, 2023 - 3:15 a.m.

CVE-2023-28526

2023-12-0903:15:07

CWE-122

CWE-787

[email protected]

web.nvd.nist.gov

ibm informix dynamic server

archecker

heap buffer overflow

bounds checking

segmentation fault

ibm x-force id

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

IBM Informix Dynamic Server 12.10 and 14.10 archecker is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow a local user to cause a segmentation fault. IBM X-Force ID: 251204.

Affected configurations

NVD

Node

ibminformix_dynamic_serverMatch12.10--

ibminformix_dynamic_serverMatch14.10

ibminformix_dynamic_server_on_cloud_pak_for_data

References

exchange.xforce.ibmcloud.com/vulnerabilities/251204

www.ibm.com/support/pages/node/7070188

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2023-28526

cvelist1 cve1 prion1 nessus1 ibm1