CNNVD-202601-5034 Information
CNNVD ID
CNNVD-202601-5034
Related CVE
- CNNVD Published: 2026-01-30
Description (Chinese)
IBM Db2是美国国际商业机器(IBM)公司的一套关系型数据库管理系统。该系统的执行环境主要有UNIX、Linux、IBMi、z/OS以及Windows服务器版本。 IBM Db2 12.1.0版本至12.1.3版本存在代码问题漏洞,该漏洞源于未加引号的搜索路径元素,可能导致本地用户权限提升。
Description (English)
IBM Db2 is a relationship database management system for the United States International Business Machinery (IBM). The implementation environment for the system is mainly UNIX, Linux, IBMi, z/OS and Windows server versions. Versions IBM Db2 12.1.0 to 12.1.3 have a code problem loophole, which originates from search path elements without quotation marks and may lead to local user privileges being raised.
Hazard Level
Medium
Vulnerability Type
代码问题
Affected Vendor
国际商业机器
Published
2026-01-30
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7257678 https://access.redhat.com/security/cve/cve-2025-36384
Patch
https://www.ibm.com/support/pages/node/7257678
Share on: