2 matches found
Security Bulletin: Security vulnerabilities have been identified in IBM DB2 shipped with IBM Maximo Asset Management
Summary IBM DB2 is shipped as a component of IBM Maximo Asset Management. Information about security vulnerabilities affecting IBM DB2 have been published in security bulletins. Vulnerability Details CVEID: CVE-2018-1857 DESCRIPTION: IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server...
CVE-2018-1802
CVE-2018-1802 affects IBM DB2 for Linux/UNIX/Windows (incl. DB2 Connect Server) binaries 9.7, 10.1, 10.5, 11.1. Root cause: binaries load shared libraries from an untrusted path, enabling a local user to gain full access to the DB2 instance account by loading a malicious shared library. Impact (a...