CNNVD-202507-3027 Information

CNNVD ID

CNNVD-202507-3027

Related CVE

CVE-2025-36116

• CNNVD Published: 2025-07-23

Description (Chinese)

IBM Db2 Mirror for i是美国国际商业机器（IBM）公司的一个确保关键数据库系统的高可用性、数据一致性和灾难恢复能力的软件。 IBM Db2 Mirror for i 7.4版本和7.5版本和7.6版本存在安全漏洞，该漏洞源于跨站WebSocket劫持，可能导致未授权操作。

Description (English)

IBM Db2 Mirror for i is a software for the United States International Business Machine (IBM) that ensures high availability, data consistency and disaster recovery capabilities for key database systems. IBM Db2 Mirror for i 7.4 and 7.5 and 7.6 had a security loophole, which originated in the cross-site WebSocket hijacking and could lead to unauthorized operations.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

国际商业机器

Published

2025-07-23

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7240351

Patch

https://www.ibm.com/support/pages/node/7240351