PT-2018-12777 · Ibm · Ibm Db2

Rich Mirch

Published

2018-05-25

Updated

2019-10-09

CVE-2018-1488

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) versions 10.5 and 11.1

Description The issue is a buffer overflow that could allow an authenticated local attacker to execute arbitrary code on the system as root.

Recommendations For versions 10.5 and 11.1, update to a version that contains a fix for this issue to prevent potential exploitation.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2018-1488

Ibm Db2