Unrated severityNVD Advisory· Published Nov 9, 2018· Updated Sep 16, 2024
CVE-2018-1780
CVE-2018-1780
Description
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could allow a local db2 instance owner to obtain root access by exploiting a symbolic link attack to read/write/corrupt a file that they originally did not have permission to access. IBM X-Force ID: 148803.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 10.5
Patches
Vulnerability mechanics
References
4- www.ibm.com/support/docview.wssmitrex_refsource_CONFIRM
- www.securityfocus.com/bid/105885mitrevdb-entryx_refsource_BID
- www.securitytracker.com/id/1042086mitrevdb-entryx_refsource_SECTRACK
- exchange.xforce.ibmcloud.com/vulnerabilities/148803mitrevdb-entryx_refsource_XF
News mentions
0No linked articles in our index yet.