Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2020-4355

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to a denial of service, caused by improper handling of Secure Sockets Layer (SSL) renegotiation requests. By sending specially-crafted requests, a remote attacker could exploit this vulnerability to increase the resource usage on the system. IBM X-Force ID: 178507.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.8%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
Products affected by CVE-2020-4355
  • Ibm » Db2 » Version: 10.1.0.0
    cpe:2.3:a:ibm:db2:10.1.0.0
  • Ibm » Db2 » Version: 10.5.0.0
    cpe:2.3:a:ibm:db2:10.5.0.0
  • Ibm » Db2 » Version: 11.1.0.0
    cpe:2.3:a:ibm:db2:11.1.0.0
  • Ibm » Db2 » Version: 11.5.0.0
    cpe:2.3:a:ibm:db2:11.5.0.0
  • Ibm » Db2 » Version: 9.7.0.0
    cpe:2.3:a:ibm:db2:9.7.0.0
  • Linux » Linux Kernel » Version: N/A
    cpe:2.3:o:linux:linux_kernel:-
  • Microsoft » Windows » Version: N/A
    cpe:2.3:o:microsoft:windows:-


Products
Pricing
Contact Us

Shodan ® - All rights reserved