Stack Based Buffer Overflow in IBM Informix Dynamic Server 14.10
CVE-2021-20515

6.7MEDIUM

Key Information:

Vendor: IBM
Status: Informix Dynamic Server
Vendor: CVE Published:; 30 April 2021

What is CVE-2021-20515?

IBM Informix Dynamic Server 14.10 is susceptible to a stack based buffer overflow due to inadequate bounds checking. This vulnerability enables a local privileged user to manipulate buffer allocations, leading to potential arbitrary code execution on the system or resulting in a denial of service. It raises significant security concerns as it could allow an attacker to exploit vulnerable components within the server environment, disrupting services and compromising data integrity.

Affected Version(s)

Informix Dynamic Server 14.1

References

https://www.ibm.com/support/pages/node/6448568

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/198366

vdb-entryx_refsource_XF

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 30, 2021
Vulnerability Reserved
Dec 17, 2020