Lucene search
K

4 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2020/03/06 7:1 p.m.24 views

Security Bulletin: IBM® Db2® is affected by multiple privilege escalation vulnerabilities (CVE-2018-1799, CVE-2018-1780, CVE-2018-1781, CVE-2018-1834).

Summary Db2 is vulnerable to privilege escalation by exploiting multiple symbolic link attacks, which could allow the Db2 instance owner or DAS owner to obtain root access. Vulnerability Details CVEID: CVE-2018-1799 DESCRIPTION: IBM DB2 could allow a local unprivileged user to overwrite files on...

8.4CVSS0.4AI score0.00474EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/12/06 1:25 p.m.22 views

Security Bulletin: Security vulnerabilities have been identified in IBM DB2 shipped with IBM Maximo Asset Management

Summary IBM DB2 is shipped as a component of IBM Maximo Asset Management. Information about security vulnerabilities affecting IBM DB2 have been published in security bulletins. Vulnerability Details CVEID: CVE-2018-1857 DESCRIPTION: IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server...

8.4CVSS0.5AI score0.01665EPSS
Exploits0Affected Software8
OSV
OSV
added 2018/11/09 1:29 a.m.2 views

CVE-2018-1834

IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 9.7, 10.1, 10.5, and 11.1 contains a vulnerability that could allow a local user to escalate their privileges to root through a symbolic link attack. IBM X-Force ID: 150511...

7.8CVSS5.8AI score0.0045EPSS
Exploits0References4
CVE
CVE
added 2018/11/09 12:0 a.m.53 views

CVE-2018-1834

CVE-2018-1834 affects IBM Db2 for Linux, UNIX and Windows (incl. DB2 Connect Server) across versions 9.7, 10.1, 10.5, and 11.1. The vulnerability is a local privilege escalation via a symbolic link attack that could allow a local user to obtain root privileges; Windows is not affected. The Connec...

7.8CVSS7.4AI score0.0045EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder