| ID |
CVE-2018-1426
|
| Sažetak |
IBM GSKit (IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, and 11.1) duplicates the PRNG state across fork() system calls when multiple ICC instances are loaded which could result in duplicate Session IDs and a risk of duplicate key material. IBM X-Force ID: 139071. |
| Reference |
|
| CVSS |
| Base: | 6.4 |
| Impact: | 4.9 |
| Exploitability: | 10.0 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| NETWORK |
LOW |
NONE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| PARTIAL |
PARTIAL |
NONE |
|
| CVSS vektor |
AV:N/AC:L/Au:N/C:P/I:P/A:N |
| Zadnje važnije ažuriranje |
24-08-2020 - 17:37 |
| Objavljeno |
22-03-2018 - 12:29 |
