6.6 Medium
AI Score
Confidence
Low
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
0.002 Low
EPSS
Percentile
59.1%
IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to read arbitrary text files via a crafted XML/XSLT function in a SELECT statement.
www-01.ibm.com/support/docview.wss?uid=swg1IT06353
www-01.ibm.com/support/docview.wss?uid=swg1IT06354
www-01.ibm.com/support/docview.wss?uid=swg1IT06355
www-01.ibm.com/support/docview.wss?uid=swg1IT06356
www-01.ibm.com/support/docview.wss?uid=swg21697988
www.securityfocus.com/bid/75949
www.securitytracker.com/id/1032883