Lucene search

K
nvd[email protected]NVD:CVE-2007-6048
HistoryNov 20, 2007 - 8:46 p.m.

CVE-2007-6048

2007-11-2020:46:00
CWE-264
web.nvd.nist.gov
4

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

0.006

Percentile

79.6%

IBM DB2 UDB 9.1 before Fixpak 4 uses incorrect permissions on ACLs for DB2NODES.CFG, which has unknown impact and attack vectors. NOTE: the vendor description of this issue is too vague to be certain that it is security-related.

Affected configurations

Nvd
Node
linuxlinux_kernel
OR
microsoftwindows
OR
unixunix
AND
ibmdb2_universal_databaseRange9.1fp3a
VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
microsoftwindows*cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
unixunix*cpe:2.3:o:unix:unix:*:*:*:*:*:*:*:*
ibmdb2_universal_database*cpe:2.3:a:ibm:db2_universal_database:*:*:fp3a:*:*:*:*:*

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

0.006

Percentile

79.6%

Related for NVD:CVE-2007-6048