CVE-2023-42005

Summary

IBM Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data 3.5, 4.0, 4.5, 4.6, 4.7, and 4.8 could allow a user with access to the Kubernetes pod, to make system calls compromising the security of containers. IBM X-Force ID: 265264.

Affected Software

VendorProductVersion RangeStatus
IBMDb2 on Cloud Pak for Data3.5, 4.0, 4.5, 4.6, 4.7, 4.8affected

Weaknesses

  • CWE-264: CWE-264 Permissions, Privileges, Access Controls

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References