← back
CVE-2020-4945

CVE-2020-4945

CVSS 6.5 MEDIUMEPSS 1.0%
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.5EPSS 1.0%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
24 Jun 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 could allow an authenticated user to overwrite arbirary files due to improper group permissions. IBM X-Force ID: 191945.
CVSS:3.0/A:N/UI:N/I:H/AC:L/PR:L/AV:N/C:N/S:U/RL:O/E:U/RC:C

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →