First published: Thu Jun 24 2021(Updated: )
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 could allow an authenticated user to overwrite arbirary files due to improper group permissions. IBM X-Force ID: 191945.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
Ibm Db2 | =11.5 | |
IBM AIX | ||
Linux Linux kernel |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this IBM Db2 vulnerability is CVE-2020-4945.
The title of this vulnerability is 'IBM Db2 for Linux UNIX and Windows (includes Db2 Connect Server) 11.5 could allow an authenticated user to overwrite arbitrary files due to improper group permissions.'
The severity rating of CVE-2020-4945 is 8.1 (high).
IBM Db2 version 11.5 is affected by CVE-2020-4945.
An authenticated user can exploit this vulnerability by overwriting arbitrary files due to improper group permissions.