IBM Data Virtualization Manager for z/OS 1.1 and 1.2 could allow an authenticated user to inject malicious JDBC URL parameters and execute code on the server.Referenceshttps://www.ibm.com/support/pages/node/7177091
