EUVD-2009-3455

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

IBM DB2 9.1 before FP8 lacks SETSESSIONUSER privilege for SESSION AUTHORIZATION, posing risks.

Reporter	Title	Published	Views	Family All 10
Tenable Nessus	IBM DB2 9.1 < 9.1 Fix Pack 8 Multiple Vulnerabilities	29 Sep 200900:00	–	nessus
Tenable Nessus	IBM DB2 9.1 < Fix Pack 8 Multiple Vulnerabilities	6 Oct 200900:00	–	nessus
CVE	CVE-2009-3473	29 Sep 200921:00	–	cve
Cvelist	CVE-2009-3473	29 Sep 200921:00	–	cvelist
NVD	CVE-2009-3473	29 Sep 200921:30	–	nvd
OpenVAS	IBM Db2 Unspecified Vulnerability - Windows	6 Oct 200900:00	–	openvas
OpenVAS	IBM Db2 Unspecified Vulnerability - Linux	6 Oct 200900:00	–	openvas
OpenVAS	IBM DB2 Unspecified Vulnerability (Windows)	6 Oct 200900:00	–	openvas
OpenVAS	IBM DB2 Unspecified Vulnerability (Linux)	6 Oct 200900:00	–	openvas
Prion	Authorization	29 Sep 200921:30	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "9dc44c7c-038a-3d3c-b14e-2327d5d46503",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "1f398e8a-85a9-35dd-a115-32be0aa19cec",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/36540
www-01	www.www-01.ibm.com/support/docview.wss
osvdb	www.osvdb.org/58479
secunia	www.secunia.com/advisories/36890
www-01	www.www-01.ibm.com/support/docview.wss
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.2Medium risk

Vulners AI Score6.2

CVSS 210

EPSS0.00574