CVE-2009-4325

Опубликовано: 16 дек. 2009

Источник: nvd

CVSS2: 6.4

EPSS Низкий

Описание

The Client Interfaces component in IBM DB2 8.2 before FP18, 9.1 before FP8, 9.5 before FP5, and 9.7 before FP1 does not validate an unspecified pointer, which allows attackers to overwrite "external memory" via unknown vectors, related to a missing "check for null pointers."

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:db2:8.2:*:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp1:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp10:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp11:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp12:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp13:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp14:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp15:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp16:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp17:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp2:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp3:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp4:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp5:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp6:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp7:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp8:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:8.2:fp9:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.1:fp1:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.1:fp2:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.1:fp3:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.1:fp3a:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.1:fp4:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.1:fp4a:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.1:fp5:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.1:fp6:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.1:fp6a:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.1:fp7:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.5:fp1:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.5:fp2:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.5:fp2a:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.5:fp3:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.5:fp3a:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.5:fp3b:*:*:*:*:*:*

cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:*

EPSS

Процентиль: 82%

0.0178

Низкий

6.4 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-448j-xqxg-cvg3

github

почти 4 года назад