IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to execute arbitrary code and conduct DLL hijacking attacks.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/167365 | VDB Entry Vendor Advisory |
https://www.ibm.com/support/pages/node/6456029 | Mitigation Vendor Advisory |
https://security.netapp.com/advisory/ntap-20210629-0004/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2021-05-26 10:15
Updated : 2022-05-13 13:04
NVD link : CVE-2019-4588
Mitre link : CVE-2019-4588
JSON object : View
CWE
CWE-427
Uncontrolled Search Path Element
Products Affected
ibm
- db2
microsoft
- windows