Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2014-3095
HistorySep 04, 2014 - 10:55 a.m.

CVE-2014-3095

2014-09-0410:55:06
CWE-20
[email protected]
web.nvd.nist.gov
8

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

AI Score

6.6

Confidence

Low

EPSS

0.142

Percentile

95.8%

JSON

The SQL engine in IBM DB2 9.5 through FP10, 9.7 through FP9a, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP4 on Linux, UNIX, and Windows allows remote authenticated users to cause a denial of service (daemon crash) via a crafted UNION clause in a subquery of a SELECT statement.

Affected configurations

Nvd
Node
ibmdb2Match9.5
OR
ibmdb2Match9.5.0.1
OR
ibmdb2Match9.5.0.2
OR
ibmdb2Match9.5.0.2a
OR
ibmdb2Match9.5.0.3
OR
ibmdb2Match9.5.0.3a
OR
ibmdb2Match9.5.0.3b
OR
ibmdb2Match9.5.0.4
OR
ibmdb2Match9.5.0.4a
OR
ibmdb2Match9.5.0.5
OR
ibmdb2Match9.5.0.6a
OR
ibmdb2Match9.5.0.7
OR
ibmdb2Match9.5.0.8
OR
ibmdb2Match9.5.0.9
OR
ibmdb2Match9.5.0.10
OR
ibmdb2Match9.7
OR
ibmdb2Match9.7.0.1
OR
ibmdb2Match9.7.0.2
OR
ibmdb2Match9.7.0.3
OR
ibmdb2Match9.7.0.4
OR
ibmdb2Match9.7.0.5
OR
ibmdb2Match9.7.0.6
OR
ibmdb2Match9.7.0.7
OR
ibmdb2Match9.7.0.8
OR
ibmdb2Match9.7.0.9
OR
ibmdb2Match9.7.0.9a
OR
ibmdb2Match9.8
OR
ibmdb2Match9.8.0.3
OR
ibmdb2Match9.8.0.4
OR
ibmdb2Match9.8.0.5
OR
ibmdb2Match10.1
OR
ibmdb2Match10.1.0.1
OR
ibmdb2Match10.1.0.2
OR
ibmdb2Match10.1.0.3
OR
ibmdb2Match10.1.0.3a
OR
ibmdb2Match10.1.0.4
OR
ibmdb2Match10.5
OR
ibmdb2Match10.5.0.1
OR
ibmdb2Match10.5.0.2
OR
ibmdb2Match10.5.0.3
OR
ibmdb2Match10.5.0.3a
AND
linuxlinux_kernel
OR
microsoftwindows
VendorProductVersionCPE
ibmdb29.5cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*
ibmdb29.5.0.1cpe:2.3:a:ibm:db2:9.5.0.1:*:*:*:*:*:*:*
ibmdb29.5.0.2cpe:2.3:a:ibm:db2:9.5.0.2:*:*:*:*:*:*:*
ibmdb29.5.0.2cpe:2.3:a:ibm:db2:9.5.0.2:a:*:*:*:*:*:*
ibmdb29.5.0.3cpe:2.3:a:ibm:db2:9.5.0.3:*:*:*:*:*:*:*
ibmdb29.5.0.3cpe:2.3:a:ibm:db2:9.5.0.3:a:*:*:*:*:*:*
ibmdb29.5.0.3cpe:2.3:a:ibm:db2:9.5.0.3:b:*:*:*:*:*:*
ibmdb29.5.0.4cpe:2.3:a:ibm:db2:9.5.0.4:*:*:*:*:*:*:*
ibmdb29.5.0.4cpe:2.3:a:ibm:db2:9.5.0.4:a:*:*:*:*:*:*
ibmdb29.5.0.5cpe:2.3:a:ibm:db2:9.5.0.5:*:*:*:*:*:*:*
Rows per page:
1-10 of 431

Related

prion 1
openvas 1
cve 1
ibm 1
cvelist 1
nessus 4
prion
prion
Code injection
2014-09-04 10:55:00
openvas
openvas
IBM Db2 SQL Compiler Denial of Service Vulnerability
2017-12-15 00:00:00
cve
cve
CVE-2014-3095
2014-09-04 10:55:06
ibm
ibm
Security Bulletin: IBM® InfoSphere Balanced Warehouse, IBM Smart Analytics System and IBM PureData System for Operational Analytics are affected by an IBM DB2® LUW denial of service vulnerability (CVE-2014-3095)
2019-10-18 03:50:04
cvelist
cvelist
CVE-2014-3095
2014-09-04 10:00:00
nessus
nessus
IBM DB2 10.5 < Fix Pack 4 Multiple Vulnerabilities
2014-09-09 00:00:00
IBM DB2 9.7 < Fix Pack 10 Multiple Vulnerabilities
2014-11-14 00:00:00
IBM DB2 10.1 < Fix Pack 5 Multiple Vulnerabilities (Bar Mitzvah)
2016-04-15 00:00:00

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

AI Score

6.6

Confidence

Low

EPSS

0.142

Percentile

95.8%

JSON
Related for NVD:CVE-2014-3095
prion1openvas1cve1ibm1cvelist1nessus4