DB2 Warehouse ON Cloud PAK FOR Data

DATE	CVE	VULNERABILITY TITLE	RISK
2022-12-01	CVE-2022-41297	Cross-Site Request Forgery (CSRF) vulnerability in IBM products IBM Db2U 3.5, 4.0, and 4.5 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. network low complexity ibm CWE-352	6.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.