Lucene search

IbmCVE-2013-3031

HistorySep 09, 2013 - 1:55 a.m.

CVE-2013-3031

2013-09-0901:55:06

CWE-119

ibm

web.nvd.nist.gov

ibm

soliddb

universal cache

sql

stored procedure

vulnerability

nvd

cve-2013-3031

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.006

Percentile

78.9%

JSON

A SQL stored procedure in the Universal Cache component in IBM solidDB 6.0.x before 6.0.1070, 6.3.x before 6.3.0.56, 6.5.x before 6.5.0.12, and 7.0.x before 7.0.0.4 allows remote authenticated users to cause a denial of service (uninitialized-memory access and daemon crash) via a call that includes named arguments and default parameter values, but does not include all of the expected arguments.

Affected configurations

Nvd

Node

ibmsoliddbMatch6.0

ibmsoliddbMatch6.0.1060

ibmsoliddbMatch6.0.1061

ibmsoliddbMatch6.0.1064

ibmsoliddbMatch6.0.1065

ibmsoliddbMatch6.0.1066

ibmsoliddbMatch6.0.1067

ibmsoliddbMatch6.0.1068

ibmsoliddbMatch6.0.1069

ibmsoliddbMatch6.3.33

ibmsoliddbMatch6.3.34

ibmsoliddbMatch6.3.37

ibmsoliddbMatch6.3.38

ibmsoliddbMatch6.3.39

ibmsoliddbMatch6.3.40

ibmsoliddbMatch6.3.41

ibmsoliddbMatch6.3.42

ibmsoliddbMatch6.3.44

ibmsoliddbMatch6.3.47

ibmsoliddbMatch6.3.48

ibmsoliddbMatch6.3.49

ibmsoliddbMatch6.3.52

ibmsoliddbMatch6.3.53

ibmsoliddbMatch6.3.54

ibmsoliddbMatch6.3.55

ibmsoliddbMatch6.5.0.0

ibmsoliddbMatch6.5.0.1

ibmsoliddbMatch6.5.0.2

ibmsoliddbMatch6.5.0.3

ibmsoliddbMatch6.5.0.4

ibmsoliddbMatch6.5.0.5

ibmsoliddbMatch6.5.0.6

ibmsoliddbMatch6.5.0.7

ibmsoliddbMatch6.5.0.8

ibmsoliddbMatch6.5.09

ibmsoliddbMatch6.5.10

ibmsoliddbMatch6.5.11

ibmsoliddbMatch7.0.0.0

ibmsoliddbMatch7.0.0.1

ibmsoliddbMatch7.0.0.2

ibmsoliddbMatch7.0.0.3

VendorProductVersionCPE
ibmsoliddb6.0cpe:2.3:a:ibm:soliddb:6.0:*:*:*:*:*:*:*
ibmsoliddb6.0.1060cpe:2.3:a:ibm:soliddb:6.0.1060:*:*:*:*:*:*:*
ibmsoliddb6.0.1061cpe:2.3:a:ibm:soliddb:6.0.1061:*:*:*:*:*:*:*
ibmsoliddb6.0.1064cpe:2.3:a:ibm:soliddb:6.0.1064:*:*:*:*:*:*:*
ibmsoliddb6.0.1065cpe:2.3:a:ibm:soliddb:6.0.1065:*:*:*:*:*:*:*
ibmsoliddb6.0.1066cpe:2.3:a:ibm:soliddb:6.0.1066:*:*:*:*:*:*:*
ibmsoliddb6.0.1067cpe:2.3:a:ibm:soliddb:6.0.1067:*:*:*:*:*:*:*
ibmsoliddb6.0.1068cpe:2.3:a:ibm:soliddb:6.0.1068:*:*:*:*:*:*:*
ibmsoliddb6.0.1069cpe:2.3:a:ibm:soliddb:6.0.1069:*:*:*:*:*:*:*
ibmsoliddb6.3.33cpe:2.3:a:ibm:soliddb:6.3.33:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	soliddb	6.0	cpe:2.3:a:ibm:soliddb:6.0:::::::*
ibm	soliddb	6.0.1060	cpe:2.3:a:ibm:soliddb:6.0.1060:::::::*
ibm	soliddb	6.0.1061	cpe:2.3:a:ibm:soliddb:6.0.1061:::::::*
ibm	soliddb	6.0.1064	cpe:2.3:a:ibm:soliddb:6.0.1064:::::::*
ibm	soliddb	6.0.1065	cpe:2.3:a:ibm:soliddb:6.0.1065:::::::*
ibm	soliddb	6.0.1066	cpe:2.3:a:ibm:soliddb:6.0.1066:::::::*
ibm	soliddb	6.0.1067	cpe:2.3:a:ibm:soliddb:6.0.1067:::::::*
ibm	soliddb	6.0.1068	cpe:2.3:a:ibm:soliddb:6.0.1068:::::::*
ibm	soliddb	6.0.1069	cpe:2.3:a:ibm:soliddb:6.0.1069:::::::*
ibm	soliddb	6.3.33	cpe:2.3:a:ibm:soliddb:6.3.33:::::::*

Rows per page:

1-10 of 411

References

www-01.ibm.com/support/docview.wss?uid=swg1IC88796

www-01.ibm.com/support/docview.wss?uid=swg1IC88797

www-01.ibm.com/support/docview.wss?uid=swg1IC94043

www-01.ibm.com/support/docview.wss?uid=swg1IC94044

www-01.ibm.com/support/docview.wss?uid=swg21643599

exchange.xforce.ibmcloud.com/vulnerabilities/84593

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.006

Percentile

78.9%

JSON

Related for CVE-2013-3031