CVE-2026-3856
published 2026-03-17CVE-2026-3856: IBM Db2 Recovery Expert for Linux, UNIX and Windows 5.5 IF 2 could allow an attacker to modify or corrupt data due to an insecure mechanism used for verifying…
critical9.1CVSS 3.1
AVNACLPRNUINSUCNIHAH
IBM Db2 Recovery Expert for Linux, UNIX and Windows 5.5 IF 2 could allow an attacker to modify or corrupt data due to an insecure mechanism used for verifying the integrity of the data during transmission.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | db2_recovery_expert | — | — |
| ibm | db2_recovery_expert | — | — |
| msrc | microsoft_edge | — | — |
| msrc | microsoft_edge_for_android | — | — |
CVSS provenance
nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
osv9.1CRITICAL