Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveIbmCVE-2014-6210
HistoryDec 12, 2014 - 4:59 p.m.

CVE-2014-6210

2014-12-1216:59:01
CWE-20
ibm
web.nvd.nist.gov
31
ibm
db2
version
denial of service
dos
authenticated users
security vulnerability

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.099

Percentile

94.9%

JSON

IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP5 on Linux, UNIX, and Windows allows remote authenticated users to cause a denial of service (daemon crash) by specifying the same column within multiple ALTER TABLE statements.

Affected configurations

Nvd
Node
ibmdb2Match9.7
OR
ibmdb2Match9.8
OR
ibmdb2_connectMatch10.1
OR
ibmdb2_connectMatch10.5
VendorProductVersionCPE
ibmdb29.7cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:*
ibmdb29.8cpe:2.3:a:ibm:db2:9.8:*:*:*:*:*:*:*
ibmdb2_connect10.1cpe:2.3:a:ibm:db2_connect:10.1:*:*:*:*:*:*:*
ibmdb2_connect10.5cpe:2.3:a:ibm:db2_connect:10.5:*:*:*:*:*:*:*

Related

nvd 1
ibm 3
cvelist 1
prion 1
nessus 4
nvd
nvd
CVE-2014-6210
2014-12-12 16:59:01
ibm
ibm
Security Bulletin: IBM® DB2® LUW contains a vulnerability in which multiple ALTER TABLE statements may cause the DB2 server to terminate abnormally. (CVE-2014-6210)
2018-06-16 13:08:08
Security Bulletin: Vulnerabilities in IBM DB2 for Linux, UNIX, and Windows affects IBM PureData System for Transactions (CVE-2014-6209, CVE-2014-6210, CVE-2014-8901)
2018-06-16 13:58:15
Security Bulletin: Infosphere BigInsights contains multiple vulnerabilities in which an ALTER TABLE statement may cause the Big SQL server to terminate abnormally. (CVE-2014-6159, CVE-2014-6209, CVE-2014-6210)
2020-07-18 23:22:56
cvelist
cvelist
CVE-2014-6210
2014-12-12 16:00:00
prion
prion
Code injection
2014-12-12 16:59:00
nessus
nessus
IBM DB2 10.5 < Fix Pack 5 Multiple DoS Vulnerabilities
2015-04-16 00:00:00
IBM DB2 10.1 < Fix Pack 5 Multiple Vulnerabilities (Bar Mitzvah)
2016-04-15 00:00:00
IBM DB2 9.7 < Fix Pack 11 Multiple Vulnerabilities (Bar Mitzvah) (FREAK) (TLS POODLE)
2015-07-18 00:00:00

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.099

Percentile

94.9%

JSON
Related for CVE-2014-6210
nvd1ibm3cvelist1prion1nessus4