← Back to CVEs
CVE-2022-22483
MEDIUM6.5
Description
IBM Db2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to an information disclosure in some scenarios due to unauthorized access caused by improper privilege management when CREATE OR REPLACE command is used. IBM X-Force ID: 225979.
CVE Details
CVSS v3.1 Score6.5
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
Published9/13/2022
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
hp:hp-uxibm:aixibm:db2linux:linux_kernelmicrosoft:windowsoracle:solaris
Weaknesses (CWE)
CWE-269
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/225979(psirt@us.ibm.com)
https://security.netapp.com/advisory/ntap-20230921-0004/(psirt@us.ibm.com)
https://www.ibm.com/support/pages/node/6618779(psirt@us.ibm.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/225979(af854a3a-2127-422b-91ae-364da2661108)
https://security.netapp.com/advisory/ntap-20230921-0004/(af854a3a-2127-422b-91ae-364da2661108)
https://www.ibm.com/support/pages/node/6618779(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.