Home

CVE-2018-1427

Description

IBM GSKit (IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, and 11.1) contains several environment variables that a local attacker could overflow and cause a denial of service. IBM X-Force ID: 139072.

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.067

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities affected in DB2 11.1Windows
Multiple Vulnerabilities are affected in DB2 9.7Windows
Multiple vulnerabilities are fixed in IBM HTTP 9.0.0.5Windows
Multiple vulnerabilities are fixed in IBM HTTP 9.0.0.8Windows
Multiple vulnerabilities are fixed in IBM HTTP 8.5.5.14Windows
Multiple vulnerabilities are fixed in IBM HTTP 7.0.0.45Windows
Multiple Vulnerabilities are affected in IBM TXSeries for Multiplatforms 8.1Windows
Multiple Vulnerabilities are affected in IBM TXSeries for Multiplatforms 9.1Windows
Multiple Vulnerabilities are affected in IBM Cognos Analytics 11.0.12.0Windows
Multiple Vulnerabilities are affected in IBM Planning Analytics Local 2.0.0Windows
Multiple Vulnerabilities are affected in IBM Tivoli Monitoring 6.2.3Windows
Multiple Vulnerabilities are affected in IBM Tivoli Monitoring 6.3.0Windows
Multiple Vulnerabilities are affected in IBM Cognos Controller 10.2.0Windows
Multiple Vulnerabilities are affected in IBM Cognos Controller 10.2.1Windows
Multiple Vulnerabilities are affected in IBM Cognos Controller 10.3.0Windows
Multiple Vulnerabilities are affected in IBM Cognos Controller 10.3.1Windows
Multiple Vulnerabilities are affected in IBM TXSeries for Multiplatforms 7.1Windows
Multiple Vulnerabilities are affected in IBM Planning Analytics Local 2.0.1Windows
Multiple Vulnerabilities are affected in IBM Planning Analytics Local 2.0.2Windows
Multiple Vulnerabilities are affected in IBM Planning Analytics Local 2.0.3Windows
Multiple Vulnerabilities are affected in IBM Planning Analytics Local 2.0.4Windows
Multiple Vulnerabilities are affected in IBM MQ 9.0.4Windows
Multiple Vulnerabilities are affected in IBM Personal Communications 12.0Windows
Multiple Vulnerabilities are affected in IBM TXSeries for Multiplatforms 8.2Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234