3.5

CVE-2013-3031

A SQL stored procedure in the Universal Cache component in IBM solidDB 6.0.x before 6.0.1070, 6.3.x before 6.3.0.56, 6.5.x before 6.5.0.12, and 7.0.x before 7.0.0.4 allows remote authenticated users to cause a denial of service (uninitialized-memory access and daemon crash) via a call that includes named arguments and default parameter values, but does not include all of the expected arguments.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmSoliddb Version6.0
IbmSoliddb Version6.0.1060
IbmSoliddb Version6.0.1061
IbmSoliddb Version6.0.1064
IbmSoliddb Version6.0.1065
IbmSoliddb Version6.0.1066
IbmSoliddb Version6.0.1067
IbmSoliddb Version6.0.1068
IbmSoliddb Version6.0.1069
IbmSoliddb Version6.3.33
IbmSoliddb Version6.3.34
IbmSoliddb Version6.3.37
IbmSoliddb Version6.3.38
IbmSoliddb Version6.3.39
IbmSoliddb Version6.3.40
IbmSoliddb Version6.3.41
IbmSoliddb Version6.3.42
IbmSoliddb Version6.3.44
IbmSoliddb Version6.3.47
IbmSoliddb Version6.3.48
IbmSoliddb Version6.3.49
IbmSoliddb Version6.3.52
IbmSoliddb Version6.3.53
IbmSoliddb Version6.3.54
IbmSoliddb Version6.3.55
IbmSoliddb Version6.5.0.0
IbmSoliddb Version6.5.0.1
IbmSoliddb Version6.5.0.2
IbmSoliddb Version6.5.0.3
IbmSoliddb Version6.5.0.4
IbmSoliddb Version6.5.0.5
IbmSoliddb Version6.5.0.6
IbmSoliddb Version6.5.0.7
IbmSoliddb Version6.5.0.8
IbmSoliddb Version6.5.09
IbmSoliddb Version6.5.10
IbmSoliddb Version6.5.11
IbmSoliddb Version7.0.0.0
IbmSoliddb Version7.0.0.1
IbmSoliddb Version7.0.0.2
IbmSoliddb Version7.0.0.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.18% 0.636
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 3.5 6.8 2.9
AV:N/AC:M/Au:S/C:N/I:N/A:P
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://www-01.ibm.com/support/docview.wss?uid=swg1IC88796
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC88797
http://www-01.ibm.com/support/docview.wss?uid=swg1IC94043
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC94044
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21643599
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/84593