PT-2026-20235 · Ibm · Ibm Db2 Recovery Expert For Linux+3

Publicado

2026-02-17

Atualizado

2026-02-26

CVE-2025-27903

CVSS v3.1

5.9

Média

Vetor

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions IBM DB2 Recovery Expert for LUW version 5.5 Interim Fix 002

Description IBM DB2 Recovery Expert for Linux, UNIX, and Windows transmits data over a cleartext communication channel. This could allow an attacker to intercept sensitive information using man-in-the-middle techniques.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Cleartext Transmission of Sensitive Information

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-319

Identificadores relacionados

CVE-2025-27903

Produtos afetados

Db2 Recovery Expert For Luw

Ibm Db2 Recovery Expert For Linux

Ibm Db2 Recovery Expert For Unix

Ibm Db2 Recovery Expert For Windows

PT-2026-20235 · Ibm · Ibm Db2 Recovery Expert For Linux+3

CVE-2025-27903

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6