4 matches found
Security Bulletin: Multiple buffer overflow vulnerabilities exist in IBM® Db2® leading to privilege escalation (CVE-2019-4322).
Summary Multiple buffer overflow vulnerabilities exist in IBM® Db2® leading to privilege escalation from an authenticated local user to either root or instance owner. Vulnerability Details CVEID: CVE-2019-4322 DESCRIPTION: IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server is...
Security Bulletin: IBM Security Key Lifecycle Manager uses Components with Known Vulnerabilities (CVE-2019-4322 CVE-2019-4386 CVE-2019-4154 CVE-2019-4102 CVE-2019-4101 CVE-2019-4057)
Summary IBM Security Key Lifecycle Manager uses IBM DB2 for Linux, UNIX and Windows which has some known vulnerabilities. Vulnerability Details CVEID: CVE-2019-4386 DESCRIPTION: IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 11.1 could allow an authenticated user to execute a...
Security Bulletin: Multiple security vulnerabilities have been identified in IBM Db2 shipped with Predictive Maintenance and Quality
Summary IBM DB2 is shipped with Predictive Maintenance and Quality. Information about a security vulnerability affecting IBM DB2 has been published in a security bulletin. CVE-2019-4322 CVE-2019-4386 CVE-2019-4154 CVE-2019-4102 CVE-2019-4101 CVE-2019-4057 Vulnerability Details Refer to the securi...
CVE-2019-4322
CVE-2019-4322 affects IBM DB2 for Linux/Unix/Windows (DB2 Connect Server) across multiple releases (9.7, 10.1, 10.5, 11.1). Root cause is a buffer overflow that could let an authenticated local user execute code as root. IBM bulletin ABDD1145 and related pages indicate fixes are available: Db2 fo...