CVE-2017-1571

Summary

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 131853.

Affected Software

VendorProductVersion RangeStatus
IBMDB2 for Linux, UNIX and Windows10.5affected
IBMDB2 for Linux, UNIX and Windows10.1affected
IBMDB2 for Linux, UNIX and Windows9.7affected
IBMDB2 for Linux, UNIX and Windows11.1affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References