Back to overview

CVE-2026-14501

MEDIUM
4.3
CVSS 3.1
Description
IBM Db2 Genius Hub 1.1, 1.1.1, 1.1.2 and IBM Agentics 1.0 could allow an attacker to execute arbitrary code or obtain sensitive information due to the use of dangerous functions without sufficient restrictions.

Metadata

CVE ID
CVE-2026-14501
State
PUBLISHED
Assigner
ibm
Reserved
2026-07-02 18:00 UTC
Published
2026-07-17 19:55 UTC
Last updated
2026-07-17 19:55 UTC
Primary CWE
CWE-676
CWE-676 Use of Potentially Dangerous Function
Vendor / Product
IBM / Db2 Genius Hub
Sources
cve.org  ·  NVD

Severity & Metrics

4.3 MEDIUM CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Affected products (2)
VendorProductPlatformVersions
IBM Agentics 1.0
IBM Db2 Genius Hub 1.1, 1.1.1, 1.1.2
Weakness (CWE)
CWESourceDescription
CWE-676 cna CWE-676 Use of Potentially Dangerous Function
CVSS scores (1)
ScoreSeverityVersionSourceVector
4.3 MEDIUM 3.1 cna CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Back to overview