Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM2364D87A3311D72EA627DE3681299FC448A8922134A28733997723F244841B22
HistoryJul 30, 2021 - 5:04 a.m.

Security Bulletin: IBM i2 Analyze is affected by multiple DB2 vulnerabilities

2021-07-3005:04:30
www.ibm.com
14
ibm i2 analyze
db2 vulnerabilities
security bulletin
remediation
ibm db2
denial of service
buffer overflow
weak file permissions

EPSS

0.001

Percentile

48.7%

JSON

Summary

DB2 has multiple security vulnerabilities. DB2 users should refer to the linked DB2 security bulletins to determine is remediation is required.

Vulnerability Details

Refer to the security bulletin(s) listed in the Remediation/Fixes section

Affected Products and Versions

Affected Product(s) Version(s)
IBM i2 Analyze IBM i2 Analyze 4.3.1
IBM i2 Analyze IBM i2 Analyze 4.3.0
IBM i2 Analyze IBM i2 Analyze 4.3.2

Remediation/Fixes

Security Bulletin: IBM® Db2® is vulnerable to a denial of service (CVE-2020-5024)
<https://www.ibm.com/support/pages/node/6427861&gt;
Affected Releases: v9.1, v10.1, v10.5, v11.1, v11.5

Security Bulletin: IBM® Db2® db2fm is vulnerable to a buffer overflow (CVE-2020-5025)
<https://www.ibm.com/support/pages/node/6427855&gt;
Affected Releases: v9.1, v10.1, v10.5, v11.1, v11.5

Security Bulletin: IBM® Db2® is vulnerable to weak file permissions allowing access to specific files (CVE-2020-4976)
<https://www.ibm.com/support/pages/node/6427859&gt;
Affected Releases: v9.1, v10.1, v10.5, v11.1, v11.5

Workarounds and Mitigations

None

Related

ibm 21
nessus 4
nvd 3
cve 3
cvelist 3
prion 3
ibm
ibm
Security Bulletin: Multiple IBM DB2 Server Vulnerabilities Affect IBM Emptoris Strategic Supply Management Platform
2021-04-22 07:53:53
Security Bulletin: Multiple IBM DB2 Server Vulnerabilities Affect IBM Emptoris Contract Management
2021-04-22 07:55:02
Security Bulletin: Multiple Vulnerabilities have been identified in IBM Db2 shipped with WebSphere Remote Server
2021-12-14 20:41:20
nessus
nessus
IBM DB2 9.7 < 9.7 FP11 40690 / 10.1 < 10.1 FP6 40689 / 10.5 < 10.5 FP11 40688 / 11.1 < 11.1.4 FP6 / 11.5 < 11.5.5 FP0 6195 Multiple Vulnerabilities (Unix)
2021-03-19 00:00:00
IBM DB2 9.7 < 9.7 FP11 40690 / 10.1 / 10.5 < 10.5 FP11 40688 / 11.1 < 11.1.4 FP6 / 11.5 < 11.5.5 6195 Multiple Vulnerabilities (Windows)
2021-03-19 00:00:00
IBM DB2 9.7 < FP11 40690 / 10.1 < FP6 40689 / 10.5 < FP11 40688 / 11.1 < FP6 / 11.5 < FP1 File Read and Overwrite Vulnerability (UNIX)
2021-03-19 00:00:00
nvd
nvd
CVE-2020-4976
2021-03-11 16:15:12
CVE-2020-5025
2021-03-11 16:15:12
CVE-2020-5024
2021-03-11 16:15:12
cve
cve
CVE-2020-4976
2021-03-11 16:15:12
CVE-2020-5025
2021-03-11 16:15:12
CVE-2020-5024
2021-03-11 16:15:12
cvelist
cvelist
CVE-2020-4976
2021-03-11 15:30:25
CVE-2020-5025
2021-03-11 15:30:26
CVE-2020-5024
2021-03-11 15:30:25
prion
prion
Code injection
2021-03-11 16:15:00
Buffer overflow
2021-03-11 16:15:00
Code injection
2021-03-11 16:15:00

EPSS

0.001

Percentile

48.7%

JSON
Related for 2364D87A3311D72EA627DE3681299FC448A8922134A28733997723F244841B22
ibm21nessus4nvd3cve3cvelist3prion3