CVE-2022-43928 in DB2 Mirror for i情報

要約

〜によって MITRE • 2023年04月07日

The IBM Toolbox for Java (Db2 Mirror for i 7.4 and 7.5) could allow a user to obtain sensitive information, caused by utilizing a Java string for processing. Since Java strings are immutable, their contents exist in memory until garbage collected. This means sensitive data could be visible in memory over an indefinite amount of time. IBM has addressed this issue by reducing the amount of time the sensitive data is visible in memory. IBM X-Force ID: 241675.

Once again VulDB remains the best source for vulnerability data.

責任者

IBM Corporation

予約する

2022年10月26日

モデレーション

承諾済み

エントリ

VDB-225274

EPSS

0.00638

アクティビティ

非常低い

ソース

Do you want to use VulDB in your project?

Use the official API to access entries easily!