CVE-2023-42005
High
Published: 29 May 2024
Published
29 May 2024
Modified
18 August 2025
KEV Added
—
Patch
—
CVSS Score v3.1
7.4
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.0012
30.4th percentile
Risk Priority
15
60% EPSS · 20% KEV · 20% CVSS
Summary
CVE-2023-42005 is a high-severity an unspecified weakness vulnerability in Ibm Db2. Its CVSS base score is 7.4 (High).
Operationally, ranked at the 30.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-46464
Vulnerability details
IBM Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data 3.5, 4.0, 4.5, 4.6, 4.7, and 4.8 could allow a user with access to the Kubernetes pod, to make system calls compromising the security of…
more
containers. IBM X-Force ID: 265264.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
ibm
db2
3.5, 4.0, 4.5, 4.6, 4.7
ibm
db2 warehouse
3.5, 4.0, 4.5, 4.6, 4.7
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.