PT-2018-12904 · Ibm · Ibm Db2

Published

2018-05-25

·

Updated

2019-10-09

·

CVE-2018-1515

CVSS v3.1

7.0

High

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) versions 10.5 and 11.1
Description The issue allows a local user to overflow a buffer, which may result in a privilege escalation to the DB2 instance owner under specific or unusual conditions.
Recommendations For IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) versions 10.5 and 11.1, at the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2018-1515

Affected Products

Ibm Db2