IBM Db2 for Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 could allow a local user to escalate their privileges to the SYSTEM user using the MSI repair functionality. IBM X-Force ID: 270402.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/270402 | VDB Entry Vendor Advisory |
https://security.netapp.com/advisory/ntap-20240307-0003/ | |
https://www.ibm.com/support/pages/node/7105500 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
07 Mar 2024, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
11 Jan 2024, 16:01
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
First Time |
Microsoft windows
Ibm Ibm db2 Microsoft |
|
CWE | NVD-CWE-noinfo | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/270402 - VDB Entry, Vendor Advisory | |
References | () https://www.ibm.com/support/pages/node/7105500 - Vendor Advisory | |
CPE | cpe:2.3:a:ibm:db2:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
08 Jan 2024, 12:02
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
07 Jan 2024, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-01-07 19:15
Updated : 2024-03-07 17:15
NVD link : CVE-2023-47145
Mitre link : CVE-2023-47145
CVE.ORG link : CVE-2023-47145
JSON object : View
Products Affected
microsoft
- windows
ibm
- db2
CWE