CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:S/C:N/I:N/A:P
AI Score
Confidence
Low
EPSS
Percentile
69.6%
The “Query Compiler, Rewrite, Optimizer” component in IBM DB2 UDB 9.5 before FP6a allows remote authenticated users to cause a denial of service (CPU consumption) via a crafted query involving certain UNION ALL views, leading to an indefinitely large amount of compilation time.
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | db2 | 9.5 | cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:* |
ibm | db2 | 9.5 | cpe:2.3:a:ibm:db2:9.5:fp1:*:*:*:*:*:* |
ibm | db2 | 9.5 | cpe:2.3:a:ibm:db2:9.5:fp2:*:*:*:*:*:* |
ibm | db2 | 9.5 | cpe:2.3:a:ibm:db2:9.5:fp2a:*:*:*:*:*:* |
ibm | db2 | 9.5 | cpe:2.3:a:ibm:db2:9.5:fp3:*:*:*:*:*:* |
ibm | db2 | 9.5 | cpe:2.3:a:ibm:db2:9.5:fp3a:*:*:*:*:*:* |
ibm | db2 | 9.5 | cpe:2.3:a:ibm:db2:9.5:fp3b:*:*:*:*:*:* |
ibm | db2 | 9.5 | cpe:2.3:a:ibm:db2:9.5:fp4:*:*:*:*:*:* |
ibm | db2 | 9.5 | cpe:2.3:a:ibm:db2:9.5:fp4a:*:*:*:*:*:* |
ibm | db2 | 9.5 | cpe:2.3:a:ibm:db2:9.5:fp5:*:*:*:*:*:* |