CVE-2020-4945
CVE-2020-4945
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.5EPSS 1.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
24 Jun 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 could allow an authenticated user to overwrite arbirary files due to improper group permissions. IBM X-Force ID: 191945.
CVSS:3.0/A:N/UI:N/I:H/AC:L/PR:L/AV:N/C:N/S:U/RL:O/E:U/RC:C
Affected products
IBM · DB2 for Linux and UNIXWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →