Ibm Db2 Universal Database Luki w zabezpieczeniach

Oś czasu

Wersja

9.026
9.112
8.012
8.2 FP1610
8.110

Przeciwdziałanie

Official Fix84
Temporary Fix0
Workaround2
Unavailable0
Not Defined20

Wykorzystywanie

High2
Functional0
Proof-of-Concept52
Unproven4
Not Defined48

Wektor dostępu

Not Defined0
Physical0
Local14
Adjacent4
Network88

Uwierzytelnianie

Not Defined0
High0
Low32
None74

Interakcja z użytkownikiem

Not Defined0
Required0
None106

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤42
≤54
≤620
≤724
≤88
≤94
≤1044

CVSSv3 Temp

≤10
≤20
≤30
≤42
≤516
≤622
≤716
≤84
≤932
≤1014

VulDB

≤10
≤20
≤30
≤42
≤54
≤620
≤724
≤88
≤94
≤1044

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Sprzedawca

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k0
<2k0
<5k10
<10k22
<25k24
<50k48
<100k2
≥100k0

Wykorzystaj dzisiaj

<1k96
<2k2
<5k2
<10k2
<25k4
<50k0
<100k0
≥100k0

Wykorzystaj wielkość rynku

🔴 CTI Zajęcia

Affected Versions (23): 6.0, 6.1, 7, 7 FP12, 7.0, 7.1, 7.2 FP9, 8 FP12, 8 FP13, 8.0, 8.1, 8.1 FP6, 8.1 FP8, 8.2, 8.2 FP3, 8.2 FP16, 9.0, 9.1, 9.1 FP2, 9.2, 9.3, 9.4, XP

Link to Product Website: https://www.ibm.com/

Typ oprogramowania: Database Software

OpublikowanoBaseTempSłaby punkt0dayDzisiajWykPrzCTICVE
2010-10-056.56.2IBM DB2 Universal Database Audit Facility weak authentication$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2010-3739
2010-04-236.35.7IBM DB2 Universal Database Data weak encryption$25k-$100k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2009-3555
2009-12-025.95.3IBM DB2 Universal Database User Account privilege escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.02CVE-2009-4150
2009-01-165.34.8IBM DB2 Universal Database privilege escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.03CVE-2009-0173
2009-01-165.34.8IBM DB2 Universal Database privilege escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2009-0172
2008-09-089.89.4IBM DB2 Universal Database privilege escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2008-3960
2008-08-289.88.8IBM DB2 Universal Database information disclosure$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2008-3857
2008-08-289.89.4IBM DB2 Universal Database privilege escalation$25k-$100k$0-$5kNot DefinedOfficial Fix0.02CVE-2008-3856
2008-08-289.88.8IBM DB2 Universal Database Administration Server DAS privilege escalation$25k-$100k$0-$5kProof-of-ConceptOfficial Fix0.02CVE-2008-3855
2008-08-289.88.8IBM DB2 Universal Database sqlrlaka memory corruption$25k-$100k$0-$5kProof-of-ConceptOfficial Fix0.02CVE-2008-3854
2008-08-2810.09.5IBM DB2 Universal Database DAS memory corruption$25k-$100k$0-$5kNot DefinedOfficial Fix0.02CVE-2008-3853
2008-08-289.88.8IBM DB2 Universal Database Stored Procedure privilege escalation$25k-$100k$0-$5kProof-of-ConceptOfficial Fix0.02CVE-2008-3852
2008-06-095.35.3IBM DB2 Universal Database Local Privilege Escalation$25k-$100k$0-$5kNot DefinedNot Defined0.02
2008-04-169.38.4IBM DB2 Universal Database Administration Server memory corruption$25k-$100k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2007-5758
2008-04-168.47.6IBM DB2 Universal Database Administration Server privilege escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2007-5664
2008-02-125.35.3IBM DB2 Universal Database Local Privilege Escalation$25k-$100k$0-$5kNot DefinedNot Defined0.00
2008-02-049.89.4IBM DB2 Universal Database JAR File Administration denial of service$25k-$100k$0-$5kNot DefinedOfficial Fix0.04CVE-2007-3676
2008-02-049.89.4IBM DB2 Universal Database SYSPROC.NNSTAT denial of service$25k-$100k$0-$5kNot DefinedOfficial Fix0.08CVE-2007-3676
2008-02-049.88.5IBM DB2 Universal Database ATTACH denial of service$5k-$25k$0-$5kUnprovenOfficial Fix0.00CVE-2007-3676
2008-02-049.98.9IBM DB2 Universal Database SetUID Binary memory corruption$25k-$100k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2008-0699
2008-02-049.88.8IBM DB2 Universal Database DB2DART memory corruption$25k-$100k$0-$5kProof-of-ConceptOfficial Fix0.02CVE-2008-0698
2008-02-049.18.2IBM DB2 Universal Database DB2 Commands privilege escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2008-0697
2008-02-049.88.8IBM DB2 Universal Database SYSPROC.ADMIN_SP_C privilege escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.05CVE-2008-0696
2008-02-049.88.5IBM DB2 Universal Database DAS privilege escalation$25k-$100k$0-$5kUnprovenOfficial Fix0.00CVE-2007-5757
2008-02-044.84.3IBM DB2 Universal Database DB2PD DB2INSTANCE privilege escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2008-0696

81 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 81 results.

więcej wpisów autorstwa Ibm

PoprzedniPrzeglądKolejny

Want to stay up to date on a daily basis?

Enable the mail alert feature now!