Out of Bounds Write Vulnerability in IBM Informix Spatial 14.10
CVE-2020-4799

7.8HIGH

Key Information:

Vendor
IBM
Status
Informix Dynamic Server
Vendor
CVE Published:
8 October 2020

Summary

IBM Informix Spatial 14.10 contains an out of bounds write vulnerability that enables local users to execute commands with elevated privileges. This flaw can be exploited if an attacker can gain access to the affected system, leading to significant security risks. Organizations must apply patches and updates to mitigate the potential for unauthorized command execution.

Affected Version(s)

Informix Dynamic Server 14.10

References

https://www.ibm.com/support/pages/node/6343587
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/189460
vdb-entryx_refsource_XF

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.