CVE-2019-4154
CVE-2019-4154
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 8.4EPSS 0.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
01 jul 2019Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local attacker to execute arbitrary code on the system as root. IBM X-Force ID: 158519.
CVSS:3.0/S:U/A:H/AV:L/AC:L/PR:N/C:H/UI:N/I:H/RC:C/RL:O/E:U
Productos afectados
IBM · DB2 for Linux, UNIX and Windows