exploitDog

CVE-2007-4275

Опубликовано: 18 авг. 2007

Источник: nvd

CVSS2: 6.9

EPSS Низкий

Описание

Multiple untrusted search path vulnerabilities in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allow local users to gain privileges via certain vectors related to (1) DB2 instance or FMP startup on Linux and Solaris; (2) exec of executables while running as root on non-Windows systems, as demonstrated by AIX; and unspecified vectors involving (3) db2licm and (4) db2pd.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:db2_universal_database:*:fp14:*:*:*:*:*:*

Версия до 8.0 (включая)

cpe:2.3:a:ibm:db2_universal_database:*:*:fp2:*:*:*:*:*

Версия до 9.1 (включая)

EPSS

Процентиль: 17%

0.00055

Низкий

6.9 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-fmrj-qgrx-g82j

github

почти 4 года назад

Multiple untrusted search path vulnerabilities in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allow local users to gain privileges via certain vectors related to (1) DB2 instance or FMP startup on Linux and Solaris; (2) exec of executables while running as root on non-Windows systems, as demonstrated by AIX; and unspecified vectors involving (3) db2licm and (4) db2pd.

EPSS

Процентиль: 17%

0.00055

Низкий

6.9 Medium

CVSS2

Дефекты

NVD-CWE-Other