CVE-2018-1635

🗓️ 20 Aug 2019 18:50:22Reported by ibmType

Stack-based buffer overflow in oninit in IBM Informix Dynamic Server Enterprise Edition 12.1 allows an authenticated user to execute predefined code with root privileges

Reporter	Title	Published	Views	Family All 8
IBM Security Bulletins	Security Bulletin: IBM Informix Dynamic Server is affected by privilege escalation vulnerabilities	1 Jun 202215:37	–	ibm
CNVD	IBM Informix Dynamic Server Buffer Overflow Vulnerability (CNVD-2019-29422)	22 Aug 201900:00	–	cnvd
Cvelist	CVE-2018-1635	20 Aug 201918:50	–	cvelist
EUVD	EUVD-2018-12214	7 Oct 202500:30	–	euvd
NVD	CVE-2018-1635	20 Aug 201919:15	–	nvd
OSV	CVE-2018-1635	20 Aug 201919:15	–	osv
Prion	Stack overflow	20 Aug 201919:15	–	prion
Positive Technologies	PT-2019-9299 · Ibm · Ibm Informix Dynamic Server Enterprise Edition	20 Aug 201900:00	–	ptsecurity

NVD

Vulners

Node

ibm informix_dynamic_serverMatch12.10fc1enterprise

ibm informix_dynamic_serverMatch12.10fc10enterprise

ibm informix_dynamic_serverMatch12.10fc11enterprise

ibm informix_dynamic_serverMatch12.10fc12enterprise

ibm informix_dynamic_serverMatch12.10fc2enterprise

ibm informix_dynamic_serverMatch12.10fc3enterprise

ibm informix_dynamic_serverMatch12.10fc4enterprise

ibm informix_dynamic_serverMatch12.10fc5enterprise

ibm informix_dynamic_serverMatch12.10fc6enterprise

ibm informix_dynamic_serverMatch12.10fc7enterprise

ibm informix_dynamic_serverMatch12.10fc8enterprise

ibm informix_dynamic_serverMatch12.10fc9enterprise

[
  {
    "product": "Informix Dynamic Server Enterprise Edition",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "12.1"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/docview.wss
security	www.security.netapp.com/advisory/ntap-20190903-0002/
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/144439

21 Nov 2024 04:00Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.16.7

CVSS 27.2

CVSS 38.2

EPSS0.00074

CWE-787