4

CVE-2012-0712

The XML feature in IBM DB2 9.5 before FP9, 9.7 through FP5, and 9.8 through FP4 allows remote authenticated users to cause a denial of service (infinite loop) by calling the XMLPARSE function with a crafted string expression.

Data is provided by the National Vulnerability Database (NVD)
IbmDb2 Version9.5
IbmDb2 Version9.5 Updatefp1
IbmDb2 Version9.5 Updatefp2
IbmDb2 Version9.5 Updatefp2a
IbmDb2 Version9.5 Updatefp3
IbmDb2 Version9.5 Updatefp3a
IbmDb2 Version9.5 Updatefp3b
IbmDb2 Version9.5 Updatefp4
IbmDb2 Version9.5 Updatefp4a
IbmDb2 Version9.5 Updatefp5
IbmDb2 Version9.5 Updatefp6
IbmDb2 Version9.5 Updatefp6a
IbmDb2 Version9.5 Updatefp7
IbmDb2 Version9.5 Updatefp8
IbmDb2 Version9.7
IbmDb2 Version9.7 Updatefp1
IbmDb2 Version9.7 Updatefp2
IbmDb2 Version9.7 Updatefp3
IbmDb2 Version9.7 Updatefp3a
IbmDb2 Version9.7 Updatefp4
IbmDb2 Version9.7 Updatefp5
IbmDb2 Version9.8
IbmDb2 Version9.8 Updatefp3
IbmDb2 Version9.8 Updatefp4
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.98% 0.747
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 4 8 2.9
AV:N/AC:L/Au:S/C:N/I:N/A:P