CVE-2026-3623

Vulnerabilities exists in IBM Netezza Performance Server Replication Services

Assigner: ibm
Reserved: 06.03.2026 Published: 27.05.2026 Updated: 27.05.2026

IBM Netezza Performance Server Replication Services 3.0.2.0 through 3.0.5.0 allows an attacker with low‑privileged access to escalate their privileges to root. By exploiting this flaw, the attacker can execute root‑level commands, obtain a root shell, and change the root user’s password. Successful exploitation also enables modification or removal of system‑wide files and the installation of persistent backdoors. This results in full system compromise with complete loss of confidentiality, integrity, and availability.

Metrics

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS Score: 7.8

Attack Vector	Local	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	High
Privileges Required	Low	Integrity Impact	High
User Interaction	None	Availability Impact	High

CVSS 3.1

Product Status

Vendor	IBM
Product	Netezza Performance Server Replication Services
Versions	affected from 3.0.2.0 to 3.0.5.0 (incl.)

Vendor

IBM

Product

Netezza Performance Server Replication Services

Versions

affected from 3.0.2.0 to 3.0.5.0 (incl.)

Solutions

Fixed VersionFix LinkIBM Netezza Performance Server Replication Services 3.0.5.1 Fix Central Link https://www.ibm.com/support/fixcentral/swg/selectFixes

References

Problem Types