Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2020-4420
HistoryJul 01, 2020 - 3:15 p.m.

CVE-2020-4420

2020-07-0115:15:15
CWE-404
[email protected]
web.nvd.nist.gov
5

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

43.9%

JSON

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow an unauthenticated attacker to cause a denial of service due a hang in the execution of a terminate command. IBM X-Force ID: 180076.

Affected configurations

Nvd
Node
ibmdb2Match9.7.0.0
OR
ibmdb2Match10.1.0.0
OR
ibmdb2Match10.5.0.0
OR
ibmdb2Match11.1.0.0
OR
ibmdb2Match11.5.0.0
AND
linuxlinux_kernelMatch-
OR
microsoftwindowsMatch-
VendorProductVersionCPE
ibmdb29.7.0.0cpe:2.3:a:ibm:db2:9.7.0.0:*:*:*:*:*:*:*
ibmdb210.1.0.0cpe:2.3:a:ibm:db2:10.1.0.0:*:*:*:*:*:*:*
ibmdb210.5.0.0cpe:2.3:a:ibm:db2:10.5.0.0:*:*:*:*:*:*:*
ibmdb211.1.0.0cpe:2.3:a:ibm:db2:11.1.0.0:*:*:*:*:*:*:*
ibmdb211.5.0.0cpe:2.3:a:ibm:db2:11.5.0.0:*:*:*:*:*:*:*
linuxlinux_kernel-cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Related

cve 1
cvelist 1
prion 1
ibm 16
nessus 2
cve
cve
CVE-2020-4420
2020-07-01 15:15:15
cvelist
cvelist
CVE-2020-4420
2020-07-01 14:25:33
prion
prion
Code injection
2020-07-01 15:15:00
ibm
ibm
Security Bulletin: IBM® Db2® is vulnerable to a denial of service attack (CVE-2020-4420)
2021-03-10 21:16:42
Security Bulletin: Multiple vulnerabilities in IBM Db2 affect IBM Cloud Pak System and IBM Cloud Pak System Software Suite
2020-09-14 13:07:12
Security Bulletin: Multiple vulnerabilities in IBM DB2 affect IBM Operations Analytics Predictive Insights
2020-09-29 13:50:42
nessus
nessus
IBM DB2 9.7 < FP11 40162 / 10.1 < FP6 40161 / 10.5 < FP11 40160 / 11.1 < FP5 40159 / 11.5 < Mod 4 FP0 Multiple Vulnerabilities (Windows)
2020-07-09 00:00:00
IBM DB2 9.7 < FP11 40162 / 10.1 < FP6 40161 / 10.5 < FP11 40160 / 11.1 < FP5 40159 / 11.5 < Mod 4 FP0 Multiple Vulnerabilities (UNIX)
2020-07-09 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

43.9%

JSON
Related for NVD:CVE-2020-4420
cve1cvelist1prion1ibm16nessus2