CVE-2022-22390
CVE-2022-22390
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.2EPSS 0.9%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
24 Jun 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM Db2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, 11.1, and 11.5 may be vulnerable to an information disclosure caused by improper privilege management when table function is used. IBM X-Force ID: 221973.
CVSS:3.0/AC:L/PR:N/UI:N/A:N/C:H/I:N/S:U/AV:L/RC:C/E:U/RL:O
Affected products
IBM · DB2 for Linux, UNIX and Windows