VDB

CVE-2020-4230

CVE-2020-4230 PUBLISHED CVSS 6.699999809265137 MEDIUM

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1 and 11.5 is vulnerable to an escalation of privilege when an authenticated local attacker with special permissions executes specially crafted Db2 commands. IBM X-Force ID: 175212.

EPSS 0.09% · 25.8th percentile

Risk Scores

CVSS 3.0
6.699999809265137
CVSS:3.0/I:H/AV:L/C:H/AC:L/S:U/UI:N/PR:H/A:H/RC:C/RL:O/E:U
EPSS Score
0.09%
25.8th percentile

Affected Products

VendorProductVersions
ibmdb211.1, 11.5
IBMDB2 for Linux- UNIX and Windows11.1, 11.5

Exploit Intelligence

Timeline

  • Feb 19, 2020 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Oct 26, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 28, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • May 1, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›