IBM’s Db2 family of data management products has a memory vulnerability. The flaw (CVE-2020-4414) is caused by improper usage of shared memory. It could allow local attackers to access sensitive data and even cause a denial of service attacks. IBM released a patch on June 30 to remediate the vulnerability. It’s the same type of memory leakage vulnerability that impacted Cisco’s WebEx video conferencing service that could local authenticated attackers get hold of usernames, authentication tokens and meeting information.
Source: https://thehackernews.com/2020/08/ibm-data-management.html