CVE-2026-14501 PUBLISHED

Use of Potentially Dangerous Functionthat in IBM Db2 Genius Hub

Assigner: ibm
Reserved: 02.07.2026 Published: 17.07.2026 Updated: 17.07.2026

IBM Db2 Genius Hub 1.1, 1.1.1, 1.1.2 and IBM Agentics 1.0 could allow an attacker to execute arbitrary code or obtain sensitive information due to the use of dangerous functions without sufficient restrictions.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
CVSS Score: 4.3

Product Status

Vendor IBM
Product Db2 Genius Hub
Versions
  • Version 1.1, 1.1.1, 1.1.2 is affected
Vendor IBM
Product Agentics
Versions
  • Version 1.0 is affected

Solutions

IBM strongly recommends addressing the vulnerability now.ProductVersion impactedRemediationIBM Db2 Genius Hub & Agentics1.1, 1.1.1, 1.1.2Upgrade to: IBM Db2 Genius Hub 1.1.3https://www.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm%7EOther%20software&product=ibm/Information+Management/IBM+Db2+Genius+Hub&release=1.1.3.0&platform=All&function=all

References

Problem Types

  • CWE-676 Use of Potentially Dangerous Function CWE