Описание
Unspecified vulnerability in the CLR stored procedure deployment from IBM Database Add-Ins for Visual Studio in the Visual Studio Net component in IBM DB2 9.1 before Fixpak 5 and 9.5 before Fixpak 2 allows remote authenticated users to execute arbitrary code via unknown vectors.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 9.1 (включая)Версия до 9.1 (включая)Версия до 9.1 (включая)Версия до 9.1 (включая)Версия до 9.1 (включая)Версия до 9.5 (включая)Версия до 9.5 (включая)Версия до 9.5 (включая)Версия до 9.5 (включая)Версия до 9.5 (включая)
Одно из
cpe:2.3:a:ibm:db2_universal_database:*:fp4a:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp4a:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp4a:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp4a:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp4a:windows:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp1:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp1:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp1:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp1:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:*:fp1:windows:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:*:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:*:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:*:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:*:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:*:windows:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp2:windows:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp3:windows:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.1:fp4:windows:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.5:*:aix:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.5:*:hp-ux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.5:*:linux:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.5:*:solaris:*:*:*:*:*
cpe:2.3:a:ibm:db2_universal_database:9.5:*:windows:*:*:*:*:*
EPSS
Процентиль: 87%
0.03183
Низкий
6.5 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
почти 4 года назад
Unspecified vulnerability in the CLR stored procedure deployment from IBM Database Add-Ins for Visual Studio in the Visual Studio Net component in IBM DB2 9.1 before Fixpak 5 and 9.5 before Fixpak 2 allows remote authenticated users to execute arbitrary code via unknown vectors.
EPSS
Процентиль: 87%
0.03183
Низкий
6.5 Medium
CVSS2
Дефекты
CWE-264