Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMB34D4783D2ECDACCB8C002E3246039DCC0A188A6E13F0E4A763BB57EEFB98FA4
HistorySep 22, 2022 - 3:02 a.m.

Security Bulletin: Security vulnerabilities have been identified in IBM® DB2® shipped with Asset and Service Management (CVE-2013-6747, CVE-2014-0963)

2022-09-2203:02:31
www.ibm.com
18
ibm db2
security vulnerabilities
asset management
industry solutions
tls/ssl
smartcloud control desk
intelligent building management

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

EPSS

0.059

Percentile

93.5%

JSON

Summary

IBM DB2 is shipped as a component of Maximo Asset Management, Maximo Asset Management Essentials, Maximo Industry Solutions (including Maximo for Government, Maximo for Nuclear Power, Maximo for Transportation, Maximo for Life Sciences, Maximo for Oil and Gas and Maximo for Utilities), Tivoli Asset Management for IT, Tivoli Service Request Manager, Change and Configuration Management Database, and SmartCloud Control Desk, Intelligent Building Management, or TRIRIGA for Energy Optimization. Information about security vulnerabilities affecting IBM DB2 has been published in a security bulletin.

Vulnerability Details

Please consult the security bulletin IBM® DB2® is impacted by multiple TLS/SSL security vulnerabilities (CVE-2013-6747, CVE-2014-0963) for vulnerability details.

Affected Products and Versions

Principal Product and Version(s)

| Affected Supporting Product and Version
—|—
Maximo Asset Management, Maximo Industry Solutions, Tivoli Asset Management for IT, Tivoli Service Request Manager, and Tivoli Change and Configuration Management Database 7.1 and 7.2| DB2 Enterprise Server Edition 9.1 and
DB2 Enterprise Server Edition 9.5
Maximo Asset Management, Maximo Industry Solutions, and SmartCloud Control Desk 7.5| DB2 Enterprise Server Edition 9.7 and
DB2 Enterprise Server Edition 10.5
Intelligent Building Management 1.1 and TRIRIGA for Energy Optimization 1.1| DB2 Enterprise Server Edition 9.7

Affected configurations

Vulners
Node
ibmmaximo_asset_managementMatch7.1
OR
ibmmaximo_asset_managementMatch7.1.1
OR
ibmmaximo_asset_managementMatch7.1.2
OR
ibmmaximo_asset_managementMatch7.2
OR
ibmmaximo_asset_managementMatch7.2.1
OR
ibmmaximo_asset_managementMatch7.5
OR
ibmmaximo_asset_management_essentialsMatchany
OR
ibmmaximo_asset_managementMatchany
OR
ibmtivoli_change_and_configuration_management_databaseMatchany
OR
ibmtivoli_service_request_managerMatchany
OR
ibmcontrol_deskMatchany
OR
ibmmaximo_for_energy_optimizationMatchany
VendorProductVersionCPE
ibmmaximo_asset_management7.1cpe:2.3:a:ibm:maximo_asset_management:7.1:*:*:*:*:*:*:*
ibmmaximo_asset_management7.1.1cpe:2.3:a:ibm:maximo_asset_management:7.1.1:*:*:*:*:*:*:*
ibmmaximo_asset_management7.1.2cpe:2.3:a:ibm:maximo_asset_management:7.1.2:*:*:*:*:*:*:*
ibmmaximo_asset_management7.2cpe:2.3:a:ibm:maximo_asset_management:7.2:*:*:*:*:*:*:*
ibmmaximo_asset_management7.2.1cpe:2.3:a:ibm:maximo_asset_management:7.2.1:*:*:*:*:*:*:*
ibmmaximo_asset_management7.5cpe:2.3:a:ibm:maximo_asset_management:7.5:*:*:*:*:*:*:*
ibmmaximo_asset_management_essentialsanycpe:2.3:a:ibm:maximo_asset_management_essentials:any:*:*:*:*:*:*:*
ibmmaximo_asset_managementanycpe:2.3:a:ibm:maximo_asset_management:any:*:*:*:*:*:*:*
ibmtivoli_change_and_configuration_management_databaseanycpe:2.3:a:ibm:tivoli_change_and_configuration_management_database:any:*:*:*:*:*:*:*
ibmtivoli_service_request_manageranycpe:2.3:a:ibm:tivoli_service_request_manager:any:*:*:*:*:*:*:*
Rows per page:
1-10 of 121

Related

ibm 74
nessus 24
nvd 2
prion 2
cve 2
seebug 1
cvelist 2
ibm
ibm
Security Bulletin: Security vulnerabilities have been identified in IBM® DB2® shipped with Tivoli Storage Productivity Center and System Storage Productivity Center (CVE-2013-6747, CVE-2014-0963)
2022-08-19 23:26:06
Security Bulletin: Security vulnerabilities have been identified in IBM® DB2® shipped with SmartCloud Cost Management (SCCM/TUAM) (CVE-2013-6747, CVE-2014-0963)
2018-06-17 22:29:57
Security Bulletin: Security vulnerabilities have been identified in IBM DB2 shipped with IBM Rational Asset Manager (CVE-2013-6747, CVE-2014-0963)
2018-06-17 04:54:38
nessus
nessus
IBM DB2 9.1 TLS/SSL Multiple DoS Vulnerabilities
2014-06-18 00:00:00
IBM DB2 9.5 <= Fix Pack 9 or 10 Multiple Vulnerabilities
2014-06-18 00:00:00
IBM DB2 10.5 < Fix Pack 3a Multiple Vulnerabilities
2014-06-18 00:00:00
nvd
nvd
CVE-2013-6747
2014-01-27 16:55:04
CVE-2014-0963
2014-05-08 10:55:03
prion
prion
Code injection
2014-01-27 16:55:00
Authentication flaw
2014-05-08 10:55:00
cve
cve
CVE-2013-6747
2014-01-27 16:55:04
CVE-2014-0963
2014-05-08 10:55:03
seebug
seebug
多个IBM产品拒绝服务漏洞(CVE-2013-6747)
2014-03-06 00:00:00
cvelist
cvelist
CVE-2013-6747
2014-01-27 16:00:00
CVE-2014-0963
2014-05-08 10:00:00

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

EPSS

0.059

Percentile

93.5%

JSON
Related for B34D4783D2ECDACCB8C002E3246039DCC0A188A6E13F0E4A763BB57EEFB98FA4
ibm74nessus24nvd2prion2cve2seebug1cvelist2