CVE-2017-1519

EPSS 1.51%
Veröffentlicht 12.09.2017 21:29:00
Zuletzt bearbeitet 20.04.2025 01:37:25
Quelle psirt@us.ibm.com
Teams Watchlist Login
Unerledigt Login

IBM DB2 10.5 and 11.1 contains a denial of service vulnerability. A remote user can cause disruption of service for DB2 Connect Server setup with a particular configuration. IBM X-Force ID: 129829.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ibm ≫ Db2 Version10.5

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.5.0.1

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.5.0.2

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.5.0.3

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.5.0.3 Updatea

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.5.0.4

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.5.0.5

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.5.0.6

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version10.5.0.7

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Version11.1.0.0

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.5

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.5.0.1

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.5.0.2

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.5.0.3

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.5.0.4

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.5.0.5

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.5.0.6

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version10.5.0.7

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Ibm ≫ Db2 Connect Version11.1.0.0

Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.51%	0.794

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.9	2.2	3.6	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:N/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www.ibm.com/support/docview.wss?uid=swg22007183

Patch

Vendor Advisory

http://www.securityfocus.com/bid/100688

Third Party Advisory

VDB Entry

http://www.securitytracker.com/id/1039298

Third Party Advisory

VDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/129829

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2017-1519

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2017-1519

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2017-1519

EUVD