Lucene search

ibm_db downloads Resources over HTTP

🗓️ 18 Feb 2019 23:59:51Reported by GitHub Advisory DatabaseType

ibm_db insecurely downloads resources over HTTP, leading to potential information disclosure or remote code execution

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
Cvelist	CVE-2016-10577	29 May 201820:00	–	cvelist
Prion	Remote code execution	29 May 201820:29	–	prion
CVE	CVE-2016-10577	29 May 201820:29	–	cve
NVD	CVE-2016-10577	29 May 201820:29	–	nvd
Node.js	Downloads Resources over HTTP	30 Nov 201620:58	–	nodejs
OSV	GHSA-C4QP-H3M6-785F ibm_db downloads Resources over HTTP	18 Feb 201923:51	–	osv
OSV	CVE-2016-10577	29 May 201820:29	–	osv
Veracode	Man In The Middle (MitM)	19 Dec 201609:17	–	veracode

Vulners

Node

ibm ibm_dbRange<1.0.2

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2016-10577
github	www.github.com/ibmdb/node-ibm_db/commit/d7e2d4b4cbeb6f067df8bba7d0b2ac5d40fcfc19
github	www.github.com/advisories/GHSA-c4qp-h3m6-785f
npmjs	www.npmjs.com/advisories/163

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

18 Feb 2019 23:51Current

7.9High risk

Vulners AI Score7.9

CVSS26.8

CVSS38.1

EPSS0.01134

CWE-311