Skip to main content

Db2 On Cloud Pak For Data

1 CVEs product

Monthly

CVE-2022-41297 MEDIUM This Month

IBM Db2U 3.5, 4.0, and 4.5 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF IBM Db2 On Cloud Pak For Data Db2 Warehouse On Cloud Pak For Data Db2U
NVD
CVSS 3.1
6.5
EPSS
0.2%
EPSS 0% CVSS 6.5
MEDIUM This Month

IBM Db2U 3.5, 4.0, and 4.5 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF IBM Db2 On Cloud Pak For Data +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy