PT-2018-5982 · Ibm · Ibm Db2
Published
2018-03-22
·
Updated
2019-10-09
·
CVE-2017-1571
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) versions 9.7, 10.1, 10.5, and 11.1
Description:
The issue is related to the use of weaker than expected cryptographic algorithms, which could allow an attacker to decrypt highly sensitive information.
Recommendations:
For versions 9.7, 10.1, 10.5, and 11.1, update to a version that uses stronger cryptographic algorithms to mitigate the risk of sensitive information decryption.
Fix
Use of a Broken Cryptographic Algorithm
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Db2