Описание
Shared memory sections and events in IBM DB2 8.1 have default permissions of read and write for the Everyone group, which allows local users to gain unauthorized access, gain sensitive information, such as cleartext passwords, and cause a denial of service.
Ссылки
- Mailing List
- Broken LinkVendor Advisory
- Broken Link
- Not Applicable
- Broken LinkPatchThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Mailing List
- Broken LinkVendor Advisory
- Broken Link
- Not Applicable
- Broken LinkPatchThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:a:ibm:db2_universal_database:7.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:7.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:8.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:8.1:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00136
Низкий
7.1 High
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-732
Связанные уязвимости
CVSS3: 7.1
github
почти 4 года назад
Shared memory sections and events in IBM DB2 8.1 have default permissions of read and write for the Everyone group, which allows local users to gain unauthorized access, gain sensitive information, such as cleartext passwords, and cause a denial of service.
EPSS
Процентиль: 34%
0.00136
Низкий
7.1 High
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-732