Db2 Security Vulnerabilities and Issues — Db2 CVE List

Lucene search

IbmDb2

5 matches found

CVE•added 2015/07/20 1:59 a.m.•63 views

CVE-2015-1883

IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to read certain administrative files via crafted use of an automated-maintenance policy stored procedure.

4CVSS5.9AI score0.00336EPSS

CVE•added 2015/07/20 1:59 a.m.•53 views

CVE-2014-8910

IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to read arbitrary text files via a crafted XML/XSLT function in a SELECT statement.

4CVSS6.1AI score0.00247EPSS

CVE•added 2015/07/20 1:59 a.m.•53 views

CVE-2015-1922

The Data Movement implementation in IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to bypass intended access restrictions and delete table rows via unspecified vectors.

3.5CVSS6.1AI score0.00227EPSS

CVE•added 2015/07/20 1:59 a.m.•53 views

CVE-2015-1935

The scalar-function implementation in IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote attackers to cause a denial of service or execute arbitrary code via unspecified vectors.

8CVSS7.8AI score0.03171EPSS

CVE•added 2015/07/20 1:59 a.m.•52 views

CVE-2015-0157

IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to cause a denial of service (daemon crash) by leveraging an unspecified scalar function in a SQL statement.

6.8CVSS6.7AI score0.01543EPSS