IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.1, 10.5, and 11.1 tool db2licm is affected by buffer overflow vulnerability that can potentially result in arbitrary code execution. IBM X-Force ID: 146364.
https://usn.ubuntu.com/3906-2/
http://www.securityfocus.com/bid/105391
https://www.ibm.com/support/docview.wss?uid=ibm10729981
https://exchange.xforce.ibmcloud.com/vulnerabilities/146364
Source: Mitre, NVD
Published: 2018-09-21
Updated: 2026-06-17
Base Score: 4.6
Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P
Severity: Medium
Base Score: 7.8
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: High
EPSS: 0.00124