Tuesday, June 30, 2020

Security Bulletin: IBM® Db2® is vulnerable to an information disclosure. (CVE-2020-4386)

Jun 30, 2020 8:03 pm EDT

Categorized: Medium Severity

Share this post:

IBM® Db2® could allow a local user to obtain sensitive information using a race condition of a symbolic link.

Affected product(s) and affected version(s):

All fix pack levels of IBM Db2 V9.7, V10.1, V10.5, V11.1, and V11.5 editions on all platforms are affected.

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6242342



from IBM Product Security Incident Response Team https://ift.tt/2ZmuCRa

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.