7 matches found
Security Bulletin: One or more security vulnerabilities has been identified in IBM® DB2® shipped with IBM PureData System for Operational Analytics (CVE-2020-4230,CVE-2020-4135,CVE-2020-4204,CVE-2020-4200)
Summary IBM® DB2® is shipped as a component of IBM PureData System for Operational Analytics. Information about security vulnerabilities affecting IBM DB2 have been published in a security bulletin CVE-2020-4230,CVE-2020-4135,CVE-2020-4204,CVE-2020-4200. Vulnerability Details CVEID: CVE-2020-4135...
Security Bulletin: IBM Db2® Warehouse has released a fix in response to multiple vulnerabilities found in IBM Db2®
Summary IBM has released the following fix for IBM Db2® Warehouse in response to multiple vulnerabilities found in IBM Db2®. Vulnerability Details CVEID: CVE-2020-4230 DESCRIPTION: IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 11.1 and 11.5 is vulnerable to an escalation of...
Security Bulletin: IBM® Db2® is vulnerable to privilege escalation (CVE-2020-4230).
Summary IBM Db2 is vulnerable to a priviledge escalation. An authenticated local attacker with special permissions can execute specially crafted Db2 commands to modify the owner of stored procedures to SYSIBM, causing a privilege escalation. Vulnerability Details CVEID: CVE-2020-4230 DESCRIPTION:...
Security Bulletin: Multiple vulnerabilities in IBM DB2 affect IBM Operations Analytics Predictive Insights (CVE-2020-4230, CVE-2020-4135, CVE-2020-4200, CVE-2020-4161, CVE-2020-4204)
Summary There are multiple vulnerabilities in IBM® DB2 used by IBM Operations Analytics Predictive Insights 1.3.6 and earlier. IBM Operations Analytics Predictive Insights has addressed the applicable CVEs. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes...
Security Bulletin: Multiple DB2 Database Server Security Vulnerabilities Affect IBM Emptoris Supplier Lifecycle Mgmt
Summary Security Bulletin: Multiple DB2 Database Server Security Vulnerabilities Affect IBM Emptoris Supplier Lifecycle Mgmt Vulnerability Details CVEID: CVE-2020-4230 DESCRIPTION: IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 11.1 and 11.5 is vulnerable to an escalation of...
Security Bulletin: Multiple DB2 Database Server Security Vulnerabilities Affect IBM Emptoris Strategic Supply Management Platform
Summary Security Bulletin: Multiple DB2 Database Server Security Vulnerabilities Affect IBM Emptoris Strategic Supply Management Platform Vulnerability Details CVEID: CVE-2020-4230 DESCRIPTION: IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 11.1 and 11.5 is vulnerable to an...
CVE-2020-4230
CVE-2020-4230 affects IBM DB2 for Linux/UNIX/Windows (DB2 Connect Server) 11.1 and 11.5. An authenticated local attacker with special permissions can escalate privileges by executing specially crafted Db2 commands. IBM bulletins provide fixes via release-specific fix packs (e.g., DB2 11.1 FP6 and...