CVE-2018-1799

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could allow a local unprivileged user to overwrite files on the system which could cause damage to the database. IBM X-Force ID: 149429.

Published : 2018-11-09 01:29 Updated : 2019-10-09 23:39

3.6
CVSS Score More info
Score 3.6 / 10
3.6
Vendor Product Version URI
Ibm Db2 9.7 cpe:/a:ibm:db2:9.7
Ibm Db2 10.1 cpe:/a:ibm:db2:10.1
Ibm Db2 10.5 cpe:/a:ibm:db2:10.5
Ibm Db2 11.1 cpe:/a:ibm:db2:11.1
  1. Ibm (1) Search CVE
    1. Db2 (4) Search CVE
      1. 9.7
      2. 10.1
      3. 10.5
      4. 11.1

CWE

ID Name Description Links
CWE-20 Improper Input Validation The product does not validate or incorrectly validates input that can affect the control flow or data flow of a program. CVE

History of changes

Date Event
2018-12-12 17:44
2018-11-16 11:29
2018-11-14 11:29
2018-11-09 01:29

New CVE