Out of Bounds Write Vulnerability in IBM Informix Spatial 14.10
CVE-2020-4799

7.8HIGH

Key Information:

Vendor: IBM
Status: Informix Dynamic Server
Vendor: CVE Published:; 8 October 2020

What is CVE-2020-4799?

IBM Informix Spatial 14.10 contains an out of bounds write vulnerability that enables local users to execute commands with elevated privileges. This flaw can be exploited if an attacker can gain access to the affected system, leading to significant security risks. Organizations must apply patches and updates to mitigate the potential for unauthorized command execution.

Affected Version(s)

Informix Dynamic Server 14.10

References

https://www.ibm.com/support/pages/node/6343587

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/189460

vdb-entryx_refsource_XF

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 8, 2020
Vulnerability Reserved
Dec 30, 2019