CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-4230

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1 and 11.5 is vulnerable to an escalation of privilege when an authenticated local attacker with special permissions executes specially crafted Db2 commands. IBM X-Force ID: 175212.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.1%

CVSS Severity

CVSS v3 Score 6.7

CVSS v2 Score 4.6

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/175212
https://www.ibm.com/support/pages/node/2878809
https://exchange.xforce.ibmcloud.com/vulnerabilities/175212
https://www.ibm.com/support/pages/node/2878809

Products affected by CVE-2020-4230

Ibm » Db2 » Version: 11.1

cpe:2.3:a:ibm:db2:11.1
Ibm » Db2 » Version: 11.5

cpe:2.3:a:ibm:db2:11.5
Ibm » Aix » Version: N/A

cpe:2.3:o:ibm:aix:-
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-4230

Products

Pricing

Contact Us