IBM Db2 on Cloud Pak for Data Vulnerability Could Allow System Calls Compromising Container Security
CVE-2023-42005
7.4HIGH
Summary
IBM Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data 3.5, 4.0, 4.5, 4.6, 4.7, and 4.8 could allow a user with access to the Kubernetes pod, to make system calls compromising the security of containers. IBM X-Force ID: 265264.
Affected Version(s)
Db2 on Cloud Pak for Data = 3.5, 4.0, 4.5, 4.6, 4.7, 4.8
CVSS V3.1
Score:
7.4
Severity:
HIGH
Confidentiality:
HIGH
Integrity:
HIGH
Availability:
HIGH
Attack Complexity:
HIGH
Privileges Required:
NONE
User Interaction:
NONE
Scope:
UNCHANGED
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database