Lucene search

[email protected]CVE-2013-6717

HistoryDec 19, 2013 - 10:55 p.m.

CVE-2013-6717

2013-12-1922:55:04

[email protected]

web.nvd.nist.gov

285

ibm

db2

olap

query engine

remote

authenticated

denial of service

nvd

cve-2013-6717

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

82.2%

JSON

The OLAP query engine in IBM DB2 and DB2 Connect 9.7 through FP9, 9.8 through FP5, 10.1 through FP3, and 10.5 through FP2, and the DB2 pureScale Feature 9.8 for Enterprise Server Edition, allows remote authenticated users to cause a denial of service (database outage and deactivation) via unspecified vectors.

Affected configurations

NVD

Node

ibmdb2Match9.7

ibmdb2Match9.7.0.1

ibmdb2Match9.7.0.2

ibmdb2Match9.7.0.3

ibmdb2Match9.7.0.4

ibmdb2Match9.7.0.5

ibmdb2Match9.7.0.6

ibmdb2Match9.7.0.7

ibmdb2Match9.7.0.8

ibmdb2Match9.7.0.9

ibmdb2_connectMatch9.7

ibmdb2_connectMatch9.7.0.1

ibmdb2_connectMatch9.7.0.2

ibmdb2_connectMatch9.7.0.3

ibmdb2_connectMatch9.7.0.4

ibmdb2_connectMatch9.7.0.5

ibmdb2_connectMatch9.7.0.6

ibmdb2_connectMatch9.7.0.7

ibmdb2_connectMatch9.7.0.8

ibmdb2_connectMatch9.7.0.9

Node

ibmdb2Match9.8

ibmdb2Match9.8.0.3

ibmdb2Match9.8.0.4

ibmdb2Match9.8.0.5

ibmdb2_connectMatch9.8

ibmdb2_connectMatch9.8.0.3

ibmdb2_connectMatch9.8.0.4

ibmdb2_connectMatch9.8.0.5

Node

ibmdb2Match10.5

ibmdb2Match10.5.0.1

ibmdb2Match10.5.0.2

ibmdb2_connectMatch10.5

ibmdb2_connectMatch10.5.0.1

ibmdb2_connectMatch10.5.0.2

Node

ibmdb2_purescale_feature_9.8Match----db2_enterprise_edition

Node

ibmdb2Match10.1

ibmdb2Match10.1.0.1

ibmdb2Match10.1.0.2

ibmdb2Match10.1.0.3

ibmdb2_connectMatch10.1

ibmdb2_connectMatch10.1.0.1

ibmdb2_connectMatch10.1.0.2

ibmdb2_connectMatch10.1.0.3

CPENameOperatorVersion
ibm:db2ibm db2eq9.7
ibm:db2ibm db2eq9.7.0.1
ibm:db2ibm db2eq9.7.0.2
ibm:db2ibm db2eq9.7.0.3
ibm:db2ibm db2eq9.7.0.4
ibm:db2ibm db2eq9.7.0.5
ibm:db2ibm db2eq9.7.0.6
ibm:db2ibm db2eq9.7.0.7
ibm:db2ibm db2eq9.7.0.8
ibm:db2ibm db2eq9.7.0.9

CPE	Name	Operator	Version
ibm:db2	ibm db2	eq	9.7
ibm:db2	ibm db2	eq	9.7.0.1
ibm:db2	ibm db2	eq	9.7.0.2
ibm:db2	ibm db2	eq	9.7.0.3
ibm:db2	ibm db2	eq	9.7.0.4
ibm:db2	ibm db2	eq	9.7.0.5
ibm:db2	ibm db2	eq	9.7.0.6
ibm:db2	ibm db2	eq	9.7.0.7
ibm:db2	ibm db2	eq	9.7.0.8
ibm:db2	ibm db2	eq	9.7.0.9