CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
Percentile
56.2%
IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5
through FP5 on Linux, UNIX, and Windows allows remote authenticated users
to read certain administrative files via crafted use of an
automated-maintenance policy stored procedure.
Author | Note |
---|---|
sbeattie | DB2 is in the partner archive for the 12.04 LTS release |
www-01.ibm.com/support/docview.wss?uid=swg1IT08075
www-01.ibm.com/support/docview.wss?uid=swg1IT08080
www-01.ibm.com/support/docview.wss?uid=swg1IT08085
www-01.ibm.com/support/docview.wss?uid=swg1IT08086
www-01.ibm.com/support/docview.wss?uid=swg21698308
launchpad.net/bugs/cve/CVE-2015-1883
nvd.nist.gov/vuln/detail/CVE-2015-1883
security-tracker.debian.org/tracker/CVE-2015-1883
www.cve.org/CVERecord?id=CVE-2015-1883