Lucene search
IbmCVELIST:CVE-2020-4885HistoryJun 24, 2021 - 6:45 p.m.
CVE-2020-4885
2021-06-2418:45:24
ibm
www.cve.org
4
ibm
db2
linux
unix
windows
configuration
vulnerability
race condition
symbolic link
x-force id
CVSS3
6.2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C
AI Score
5.8
Confidence
High
EPSS
0
Percentile
5.1%
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 could allow a local user to access and change the configuration of Db2 due to a race condition of a symbolic link,. IBM X-Force ID: 190909.
CNA Affected
[
{
"product": "DB2 for Linux and UNIX",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "11.5"
}
]
}
]Related
nvd
nvd
CVE-2020-4885
2021-06-24 19:15:08
cve
cve
CVE-2020-4885
2021-06-24 19:15:08
ibm
ibm
cnvd
cnvd
IBM DB2 Backlink Vulnerability
2021-06-25 00:00:00
prion
prion
Race condition
2021-06-24 19:15:00
nessus
nessus
IBM DB2 11.5 < 11.5.6 FP0 Multiple Vulnerabilities (UNIX)
2021-07-02 00:00:00
CVSS3
6.2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C
AI Score
5.8
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVELIST:CVE-2020-4885