How severe is CVE-2020-4414?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.1 out of 10.

What type of vulnerability is CVE-2020-4414?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2020-4414

MEDIUM Year: 2020

CVSS v3 Score

5.1

Medium

CVSS v2 Score

3.6

Low

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local attacker to perform unauthorized actions on the system, caused by improper usage of shared memory. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain sensitive information or cause a denial of service. IBM X-Force ID: 179989.

CVE-2016-0641

MEDIUM

CVSS:5.1(Medium)

Unspecified vulnerability in Oracle MySQL 5.5.47 and earlier, 5.6.28 and earlier, and 5.7.10 and earlier and MariaDB before 5.5.48, 10.0.x before 10.0.24, and 10.1.x before 10.1.12 allows local users ...

NVD-CWE-Other2016

CVE-2016-5746

MEDIUM

CVSS:5.1(Medium)

libstorage, libstorage-ng, and yast-storage improperly store passphrases for encrypted storage devices in a temporary file on disk, which might allow local users to obtain sensitive information by rea...

NVD-CWE-Other2016

CVE-2017-10054

MEDIUM

CVSS:5.1(Medium)

Vulnerability in the Oracle Hospitality Cruise Materials Management component of Oracle Hospitality Applications (subcomponent: MMS). The supported version that is affected is 7.30.564.0. Easily explo...

NVD-CWE-Other2017

CVE-2017-10419

MEDIUM

CVSS:5.1(Medium)

Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: PMS). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerab...

NVD-CWE-Other2017

CVE-2017-3504

MEDIUM

CVSS:5.1(Medium)

Vulnerability in the Automatic Service Request (ASR) component of Oracle Support Tools (subcomponent: ASR Manager). The supported version that is affected is Prior to 5.7. Easily "exploitable" vulnera...

NVD-CWE-Other2017