Information
The SYSIBM.SYSTBSPACEAUTH table contains users or groups that have been granted the USE privilege on a particular tablespace in the database. It is recommended that the PUBLIC role be restricted from accessing this table.
Rationale:
PUBLIC should not have access to the grants of the tablespaces in a database. This could lead to an exploit.
Solution
Perform the following to revoke access from PUBLIC.
Connect to the Db2 database.
db2 => connect to <dbname>
Run the following command:
db2 => REVOKE SELECT ON SYSIBM.SYSTBSPACEAUTH FROM PUBLIC