Lucene search

K

Ubuntu.comUB:CVE-2015-1922

HistoryJul 20, 2015 - 12:00 a.m.

CVE-2015-1922

2015-07-2000:00:00

ubuntu.com

ubuntu.com

14

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

EPSS

0.002

Percentile

53.4%

The Data Movement implementation in IBM DB2 9.7 through FP10, 9.8 through
FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows
allows remote authenticated users to bypass intended access restrictions
and delete table rows via unspecified vectors.

Notes

Author	Note
sbeattie	DB2 is in the partner archive for the 12.04 LTS release

References

www-01.ibm.com/support/docview.wss?uid=swg1IT08523

www-01.ibm.com/support/docview.wss?uid=swg1IT08524

www-01.ibm.com/support/docview.wss?uid=swg1IT08525

www-01.ibm.com/support/docview.wss?uid=swg1IT08526

www-01.ibm.com/support/docview.wss?uid=swg21959650

launchpad.net/bugs/cve/CVE-2015-1922

nvd.nist.gov/vuln/detail/CVE-2015-1922

security-tracker.debian.org/tracker/CVE-2015-1922

www.cve.org/CVERecord?id=CVE-2015-1922

CVSS2

3.5

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

EPSS

0.002

Percentile

53.4%

Related for UB:CVE-2015-1922

cvelist1 nvd1 prion1 ibm3 cve1 openvas1 nessus6