Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2023-29256

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to an information disclosure due to improper privilege management when certain federation features are used. IBM X-Force ID: 252046.

  • Published: Jul 10, 2023
  • Updated: Jul 14, 2023
  • CVE: CVE-2023-29256
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.5
  • AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWEs:

Software From Fixed in
ibm / db2 10.5.0.11 10.5.0.11.x
ibm / db2 11.1.4.7 11.1.4.7.x
ibm / db2 11.5 11.5.x