Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 9:6 p.m.42 views

Security Bulletin: Unauthorized Access to Table Vulnerability in DB2 (CVE-2013-4033)

Abstract A vulnerability in IBM DB2 could allow an authenticated user holding EXPLAIN authority to temporarily gain SELECT, INSERT, UPDATE or DELETE privilege on a table. Content VULNERABILITY DETAILS CVE ID: CVE-2013-4033 DESCRIPTION: The IBM DB2 products listed below contain a security...

4.6CVSS6.3AI score0.01746EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 9:6 p.m.37 views

Security Bulletin: IBM InfoSphere Balanced Warehouse C3000, C4000, and D5100 and IBM Smart Analytics System 1050, 2050, 5600, 5710, 7600, 7700 and 7710 are affected by an unauthorized access to table vulnerability in IBM DB2 (CVE-2013-4033)

Abstract A vulnerability in IBM DB2 for Linux, UNIX, and Windows could allow an authenticated user holding EXPLAIN authority to temporarily gain SELECT, INSERT, UPDATE or DELETE privilege on a table. Content VULNERABILITY DETAILS: CVE ID: CVE-2013-4033 IBM InfoSphere Balanced Warehouse C3000,...

4.6CVSS0.3AI score0.01746EPSS
Exploits0Affected Software2
Tenable Nessus
Tenable Nessus
added 2013/10/16 12:0 a.m.37 views

IBM DB2 10.1 < Fix Pack 3 Multiple Vulnerabilities (credentialed check)

According to its version, the installation of IBM DB2 10.1 on the remote host is affected by the following vulnerabilities : - When a multi-node configuration is used, an error exists in the Fast Communications Manager FCM that could allow denial of service attacks. CVE-2013-4032 / IC94434 - An...

5CVSS5.5AI score0.02374EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2013/09/06 12:0 a.m.55 views

IBM DB2 10.5 < Fix Pack 1 Security Bypass

According to its version, the installation of IBM DB2 10.5 running on the remote host is affected by a security bypass vulnerability. An unspecified error exists that can allow an attacker to gain SELECT, INSERT, UPDATE, or DELETE permissions to database tables. Note that successful exploitation...

4.6CVSS5.6AI score0.01746EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2013/09/05 12:0 a.m.31 views

IBM Db2 DML Statement Execution Remote Privilege Escalation Vulnerability

IBM Db2 is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ibm:db2"; ifdescription...

4.6CVSS6.4AI score0.01746EPSS
Exploits0References4
CVE
CVE
added 2013/08/28 10:0 a.m.324 views

CVE-2013-4033

CVE-2013-4033 affects IBM DB2 and DB2 Connect (versions 9.7 FP8, 9.8 FP5, 10.1 FP2, 10.5 FP1). An authenticated user with EXPLAIN authority can temporarily gain SELECT/INSERT/UPDATE/DELETE on a table without DATAACCESS authority, by exploiting EXPLAIN-related privileges. IBM security notices list...

4.6CVSS6.5AI score0.01746EPSS
Exploits0References6Affected Software2
Rows per page
Query Builder