Quentin Rhoads-Herrera

**Name of the Vulnerable Software and Affected Versions** Expedition Migration Tool versions 1.0.106 and earlier **Description** The issue is related to weaknesses in the authentication procedure of the Expedition Migration Tool. This can allow a remote attacker to gain access to protected information. An unauthenticated attacker may be able to enumerate files on the operating system. **Recommendations** For versions 1.0.106 and earlier, update to a version that addresses the authentication weaknesses to prevent unauthorized access and file enumeration. As a temporary workaround, consider restricting access to the Expedition Migration Tool to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) versions 9.7 through 11.1 **Description** The issue is caused by improper bounds checking, leading to a stack-based buffer overflow. This could allow an attacker to execute arbitrary code. **Recommendations** For versions 9.7 through 11.1, update to a version that includes the fix for the improper bounds checking issue to prevent stack-based buffer overflow and potential arbitrary code execution.