CVE-2024-54178 IBM CVE debrief

Who should care

Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data administrators and users should be aware of this vulnerability. Specifically, those using versions 4.8, 5.0, 5.1, 5.2, and 5.3 are at risk and should review their systems for potential exposure.

Technical summary

The vulnerability exists in IBM Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data due to improper allocation of resources when creating new databases. This allows an authenticated user to cause a denial of service. The CVSS vector is CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H, indicating a medium severity with a score of 6.5.

Defensive priority

Medium priority due to authenticated user exploitation and denial of service impact.

Recommended defensive actions

• Inventory affected systems and versions to assess exposure.
• Review and apply vendor-supported patches or updates for IBM Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data.
• Implement compensating controls to limit the impact of a potential denial of service.
• Monitor systems for unusual activity related to database creation.
• Track exceptions for any database creation issues that may indicate exploitation attempts.

Evidence notes

The primary evidence for this vulnerability comes from the IBM PSIRT (Product Security Incident Response Team) and the CVE record. The affected products are IBM Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data versions 4.8, 5.0, 5.1, 5.2, and 5.3. Defenders should verify the CVSS score and vector from official sources like NVD and CVE.org.

Official resources