Primary

Context

IBM Db2 Privilege Escalation Vulnerability Allowing Root Access

Vulnerability

Patched

A local privilege escalation vulnerability has been identified in IBM Db2 for Linux, UNIX, and Windows, specifically in versions 11.5.0 through 11.5.9, including Db2 Connect Server. This vulnerability could allow an instance owner to execute malicious code that escalates privileges to root. The issue arises from the execution of unnecessary privileges at a level higher than required, potentially enabling unauthorized access to critical system resources.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a user to gain root access on the system.

Remediation

Users can download a special build containing the interim fix for this vulnerability from Fix Central. This special build is available for version 11.5.9 and can be applied to any affected level of the 11.5 release.

Added: Jan 30, 2026, 10:34 PM

Updated: Jan 30, 2026, 10:34 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

3.1

remediation

7.7

relevance

2.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

3.1

remediation

7.7

relevance

2.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Db2 Privilege Escalation Vulnerability Allowing Root Access

Vulnerability

Impact

Remediation

Affected Products

IBM Db2

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating