Lucene search
K

266 matches found

OSV
OSV
added 2019/08/20 7:15 p.m.3 views

CVE-2018-1630

IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in onmode. IBM X-Force ID: 144430...

6.7CVSS5.8AI score0.00416EPSS
Exploits0References3
Prion
Prion
added 2019/08/20 7:15 p.m.21 views

Design/Logic Flaw

IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in infos.DBSERVERNAME. IBM X-Force ID: 144437...

7.2CVSS6.5AI score0.00416EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2019/08/20 6:50 p.m.24 views

CVE-2018-1631

IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in oninit mongohash. IBM X-Force ID: 144431...

8.2CVSS6.6AI score0.00416EPSS
Exploits0References3
CVE
CVE
added 2019/08/20 6:50 p.m.50 views

CVE-2018-1636

CVE-2018-1636 affects IBM Informix Dynamic Server Enterprise Edition 12.1. The issue is a stack-based buffer overflow in oninit that, when exploited by an authenticated local user, can execute code with root privileges (local privilege escalation). Remediation per IBM bulletin: upgrade to IBM Inf...

8.2CVSS6.6AI score0.00439EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2019/08/20 6:50 p.m.49 views

CVE-2018-1631

IBM Informix Dynamic Server Enterprise Edition 12.1 is affected by a local privilege-escalation vulnerability (CVE-2018-1631) where a DBA-user can gain root privileges via a symbolic link vulnerability in oninit mongohash. Affected product: IBM Informix Dynamic Server Enterprise Edition 12.1. Roo...

8.2CVSS6.3AI score0.00416EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2019/08/20 6:50 p.m.49 views

CVE-2018-1630

IBM Informix Dynamic Server (IDS) Privilege Escalation (CVE-2018-1630) affects IDS v12.10 (Enterprise) where a local DBA can gain root via a symbolic link vulnerability in onmode. The IBM advisory (IDS security bulletin) confirms the root cause as a symbolic link issue and lists a remediation: up...

8.2CVSS6.3AI score0.00416EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2019/08/20 12:0 a.m.3 views

PT-2019-9537 · Ibm · Ibm Informix Dynamic Server Enterprise Edition

Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: A local user could potentially load malicious libraries and gain root privileges. Recommendations: For IBM Informix Dynamic Server Enterprise Edition version 12.1, at th...

7.8CVSS7.7AI score0.00357EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2019/08/20 12:0 a.m.4 views

PT-2019-9295 · Ibm · Ibm Informix Dynamic Server Enterprise Edition

Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: The issue allows a local user logged in with database administrator privileges to gain root privileges through a symbolic link vulnerability in oninit mongohash...

8.2CVSS7.2AI score0.00416EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2019/08/20 12:0 a.m.4 views

PT-2019-9300 · Ibm · Ibm Informix Dynamic Server Enterprise Edition

Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: The issue is a stack-based buffer overflow in the oninit function, allowing an authenticated user to execute predefined code with root privileges. This could enable an...

8.2CVSS7.5AI score0.00439EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2019/08/20 12:0 a.m.3 views

PT-2019-9298 · Ibm · Ibm Informix Dynamic Server Enterprise Edition

Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: A symbolic link vulnerability exists in infos.DBSERVERNAME, which could allow a local user logged in with database administrator privileges to gain root privileges...

8.2CVSS7.2AI score0.00416EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2019/08/20 12:0 a.m.5 views

PT-2019-9297 · Ibm · Ibm Informix Dynamic Server Enterprise Edition

Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: A symbolic link vulnerability in onsrvapd could allow a local user logged in with database administrator privileges to gain root privileges. Recommendations: For IBM...

8.2CVSS7.2AI score0.00417EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2019/08/20 12:0 a.m.3 views

PT-2019-9296 · Ibm · Ibm Informix Dynamic Server Enterprise Edition

Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: A symbolic link vulnerability in .infxdirs could allow a local user logged in with database administrator privileges to gain root privileges. Recommendations: For IBM...

8.2CVSS7.2AI score0.00416EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2019/08/20 12:0 a.m.5 views

PT-2019-9293 · Ibm · Ibm Informix Dynamic Server Enterprise Edition

Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: The issue allows a local user logged in with database administrator privileges to gain root privileges through a symbolic link vulnerability in onmode. Recommendations:...

8.2CVSS7.2AI score0.00416EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2019/08/20 12:0 a.m.5 views

PT-2019-16995 · Ibm · Ibm Informix Dynamic Server Enterprise Edition

Name of the Vulnerable Software and Affected Versions: IBM Informix Dynamic Server Enterprise Edition version 12.1 Description: The issue allows a local privileged Informix user to load a malicious shared library, potentially gaining root access privileges. Recommendations: For IBM Informix Dynam...

7.8CVSS7.5AI score0.00416EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2018/09/29 5:51 p.m.19 views

Security Bulletin: Vulnerability in Install of Informix Dynamic Server on Windows (CVE-2016-0226)

Summary IBM Informix Dynamic Server, Windows Client, is vulnerable to a privilege escalation attack. Vulnerability Details CVEID: CVEID: CVE-2016-0226 DESCRIPTION: Windows client installations of IBM Informix Dynamic Server could allow a local user to gain privileges. CVSS Base Score: 8.4 CVSS...

7.8CVSS1.8AI score0.00379EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 2:54 p.m.47 views

Security Bulletin: A security vulnerability has been identified in Informix Dynamic Server and IBM® DB2® shipped with IBM Tivoli Network Manager IP Edition (CVE-2014-8730)

Summary Informix Dynamic Server and IBM® DB2® are shipped as a component of IBM Tivoli Network Manager IP Edition. Information about a security vulnerability affecting Informix Dynamic Server and IBM® DB2® have been published in a security bulletin. Vulnerability Details Please consult the securi...

1.8AI score0.1372EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 1:50 p.m.21 views

Security Bulletin: IBM Informix Dynamic Server is affected by a privilege escalation vulnerability

Summary IBM Informix Dynamic Server has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2017-1508 DESCRIPTION: IBM Informix Dynamic Server could allow a local user logged in with database administrator user to gain root privileges. CVSS Base Score: 6.7 CVSS Temporal Score:...

6.8CVSS6.6AI score0.00327EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 1:48 p.m.23 views

Security Bulletin: IBM Informix Dynamic Server is affected by a buffer overflow in Informix function FORMAT_UNITS

Summary IBM Informix Dynamic Server has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2017-1310 DESCRIPTION: IBM Informix Dynamic Server could allow an authenticated user to cause a buffer overflow that would write large assertion fail files to the server. Done enough...

6.5CVSS1.2AI score0.01688EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:2 a.m.34 views

Security Bulletin: A security vulnerability has been identified in Informix Dynamic Server shipped with WebSphere Remote Server (CVE-2014-8730)

Summary Informix Dynamic Server is shipped as a component of WebSphere Remote Server. Information about a security vulnerability affecting Informix Dynamic Server has been published in a security bulletin. Vulnerability Details For vulnerability details, see the security bulletin TLS padding...

4.3CVSS0.7AI score0.1372EPSS
Exploits0Affected Software1
Saint
Saint
added 2017/09/27 12:0 a.m.673 views

IBM Open Admin Tool SOAP welcomeServer PHP Command Injection

Added: 09/27/2017 CVE: CVE-2017-1092 BID: 98615 Background IBM Informix Dynamic Server IDS is an online transaction processing OLTP data server for enterprise and workgroup computing. Open Admin Tool OAT is an open source, platform-independent tool providing a graphical interface for administrati...

10CVSS9AI score0.75767EPSS
Exploits12
Rows per page
Query Builder