6.5

CVE-2011-0757

IBM DB2 9.1 before FP10, 9.5 before FP6a, and 9.7 before FP2 on Linux, UNIX, and Windows does not properly revoke the DBADM authority, which allows remote authenticated users to execute non-DDL statements by leveraging previous possession of this authority.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmDb2 Updatefp9 Version <= 9.1
IbmDb2 Version9.1
IbmDb2 Version9.1 Updatefp1
IbmDb2 Version9.1 Updatefp2
IbmDb2 Version9.1 Updatefp2a
IbmDb2 Version9.1 Updatefp3
IbmDb2 Version9.1 Updatefp3a
IbmDb2 Version9.1 Updatefp4
IbmDb2 Version9.1 Updatefp4a
IbmDb2 Version9.1 Updatefp5
IbmDb2 Version9.1 Updatefp6
IbmDb2 Version9.1 Updatefp6a
IbmDb2 Version9.1 Updatefp7
IbmDb2 Version9.1 Updatefp7a
IbmDb2 Version9.1 Updatefp8
IbmDb2 Updatefp6 Version <= 9.5
IbmDb2 Version9.5
IbmDb2 Version9.5 Updatefp1
IbmDb2 Version9.5 Updatefp2
IbmDb2 Version9.5 Updatefp2a
IbmDb2 Version9.5 Updatefp3
IbmDb2 Version9.5 Updatefp3a
IbmDb2 Version9.5 Updatefp3b
IbmDb2 Version9.5 Updatefp4
IbmDb2 Version9.5 Updatefp4a
IbmDb2 Version9.5 Updatefp5
IbmDb2 Updatefp1 Version <= 9.7
IbmDb2 Version9.7
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.05% 0.755
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.5 8 6.4
AV:N/AC:L/Au:S/C:P/I:P/A:P