← back
CVE-2020-4386

CVE-2020-4386

CVSS 6.2 MEDIUMEPSS 0.2%
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to obtain sensitive information using a race condition of a symbolic link. IBM X-Force ID: 179268.
CVSS:3.0/AC:L/A:N/UI:N/PR:N/C:H/S:U/AV:L/I:N/RL:O/RC:C/E:U
Affected products
IBM · DB2 for Linux- UNIX and Windows

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/179268https://www.ibm.com/support/pages/node/6242342