Vulnerabilities > CVE-2023-27859 - Unspecified vulnerability in IBM DB2
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
NONE Integrity impact
HIGH Availability impact
NONE Summary
IBM Db2 10.1, 10.5, and 11.1 could allow a remote user to execute arbitrary code caused by installing like named jar files across multiple databases. A user could exploit this by installing a malicious jar file that overwrites the existing like named jar file in another database. IBM X-Force ID: 249205.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | Ibm
| 78 |
OS | 1 | |
OS | 2 | |
OS | 1 | |
OS | 1 | |
OS | 1 |
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/249205
- https://exchange.xforce.ibmcloud.com/vulnerabilities/249205
- https://security.netapp.com/advisory/ntap-20240307-0002/
- https://security.netapp.com/advisory/ntap-20240307-0002/
- https://www.ibm.com/support/pages/node/7105503
- https://www.ibm.com/support/pages/node/7105503