CVE-2018-1487 : IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5 and 11.1 binaries load shared libraries from an untrusted path potentially giving low privilege users full access to the DB2 instance account by loading a malicious shared library. IBM X-Force ID: 140972.

Published 2018-07-10 16:29:01

Updated 2019-10-09 23:38:32

Source IBM Corporation

View at NVD, CVE.org

Vulnerability category: File inclusion

Products affected by CVE-2018-1487

IBM » DB2 » Version: 9.7
cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:*
Matching versions
When used together with: Linux » Linux Kernel
IBM » DB2 » Version: 10.1
cpe:2.3:a:ibm:db2:10.1:*:*:*:*:*:*:*
Matching versions
When used together with: Linux » Linux Kernel
IBM » DB2 » Version: 10.5
cpe:2.3:a:ibm:db2:10.5:*:*:*:*:*:*:*
Matching versions
When used together with: Linux » Linux Kernel
IBM » DB2 » Version: 11.1
cpe:2.3:a:ibm:db2:11.1:*:*:*:*:*:*:*
Matching versions
When used together with: Linux » Linux Kernel

Exploit prediction scoring system (EPSS) score for CVE-2018-1487

EPSS FAQ

0.09%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 27 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-1487

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.6	MEDIUM	AV:L/AC:L/Au:N/C:P/I:P/A:P	3.9	6.4	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
7.8	HIGH	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	1.8	5.9	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
8.4	HIGH	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	2.5	5.9	IBM Corporation
Attack Vector: Local Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2018-1487

CWE-426 Untrusted Search Path

The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2018-1487

http://www.ibm.com/support/docview.wss?uid=swg22016505

IBM Security Bulletin: Privilege escalation in IBM® Db2® via loading libraries from untrusted path (CVE-2018-1487).
Vendor Advisory
http://www.securitytracker.com/id/1041231

IBM DB2 Untrusted Library Loading Path Lets Local Users Gain Elevated Privileges - SecurityTracker
Third Party Advisory;VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/140972

IBM DB2 privilege escalation CVE-2018-1487 Vulnerability Report
Third Party Advisory;VDB Entry

Jump to

Vulnerability Details : CVE-2018-1487

Products affected by CVE-2018-1487

Exploit prediction scoring system (EPSS) score for CVE-2018-1487

CVSS scores for CVE-2018-1487

CWE ids for CVE-2018-1487

References for CVE-2018-1487