November 20, 2023
Severity Medium Analysis Summary Agent Tesla is a very popular spyware Trojan built for the.NET framework. Since its initial appearance in 2014, this has been deployed […]
Rewterz Threat Alert – Trickbot Malware – Active IOCs
June 27, 2022Rewterz Threat Alert – DarkCrystal RAT (DCRat) Targeting Ukrainian Telecommunications Operators – Active IOCs- Russian-Ukrainian Cyber Warfare
June 27, 2022Rewterz Threat Alert – Trickbot Malware – Active IOCs
June 27, 2022Rewterz Threat Alert – DarkCrystal RAT (DCRat) Targeting Ukrainian Telecommunications Operators – Active IOCs- Russian-Ukrainian Cyber Warfare
June 27, 2022
Severity
High
Analysis Summary
CVE-2022-22390
IBM Db2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, 11.1, and 11.5 may be vulnerable to an information disclosure caused by improper privilege management when table function is used.
CVE-2022-22389
IBM Db2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to a denial of service as the server may terminate abnormally when executing specially crafted SQL statements by an authenticated user.
Impact
- Information Disclsoure
- Denial of Service
Indicators Of Compromise
CVE
- CVE-2022-22390
- CVE-2022-22389
Affected Vendors
- IBM
Affected Products
- IBM DB2 for Linux. UNIX and Windows 10.1
- IBM DB2 for Linux. UNIX and Windows 9.7
- IBM DB2 for Linux UNIX. and Windows 11.1
- IBM DB2 for Linux UNIX. and Windows 10.5
Remediation
Refer to IBM Security Bulletin for patch, upgrade or suggested workaround information.