Unrated severityNVD Advisory· Published Nov 20, 2020· Updated Sep 17, 2024
CVE-2020-4739
CVE-2020-4739
Description
IBM DB2 Accessories Suite for Linux, UNIX, and Windows, DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local authenticated attacker to execute arbitrary code on the system, caused by DLL search order hijacking vulnerability in Microsoft Windows client. By placing a specially crafted file in a compromised folder, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 188149.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 9.7, 10.1, 10.5, 11.1, 11.5
- Range: 10.5
Patches
Vulnerability mechanics
References
2- exchange.xforce.ibmcloud.com/vulnerabilities/188149mitrevdb-entryx_refsource_XF
- www.ibm.com/support/pages/node/6370023mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.