CVE-2021-20373

high

Description

IBM Db2 9.7, 10.1, 10.5, 11.1, and 11.5 may be vulnerable to an Information Disclosure when using the LOAD utility as under certain circumstances the LOAD utility does not enforce directory restrictions. IBM X-Force ID: 199521.

References

https://www.ibm.com/support/pages/node/6523804

https://security.netapp.com/advisory/ntap-20220225-0005/

https://exchange.xforce.ibmcloud.com/vulnerabilities/195521

Details

Source: Mitre, NVD

Published: 2021-12-09

Updated: 2023-08-08

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High