Medium severity6.3NVD Advisory· Published Jul 10, 2023· Updated Jun 17, 2026
CVE-2023-27868
CVE-2023-27868
Description
IBM Db2 JDBC Driver for Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unchecked class instantiation when providing plugin classes. By sending a specially crafted request using the named pluginClassName class, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 249516.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: 10.5, 11.1, 11.5
- Range: 10.5, 11.1 ,11.5
Patches
Vulnerability mechanics
References
3- www.ibm.com/support/pages/node/7010029nvdPatchVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/249516nvdVDB EntryVendor Advisory
- security.netapp.com/advisory/ntap-20230803-0006/nvd
News mentions
0No linked articles in our index yet.