CVE-2014-8910
20.07.2015, 01:59
IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to read arbitrary text files via a crafted XML/XSLT function in a SELECT statement.
| Vendor | Product | Version |
|---|---|---|
| ibm | db2 | 9.7 |
| ibm | db2 | 9.7 |
| ibm | db2 | 9.7 |
| ibm | db2 | 9.7 |
| ibm | db2 | 9.7 |
| ibm | db2 | 9.8 |
| ibm | db2 | 9.8 |
| ibm | db2 | 9.8 |
| ibm | db2 | 9.8 |
| ibm | db2 | 9.8 |
| ibm | db2 | 10.1 |
| ibm | db2 | 10.1 |
| ibm | db2 | 10.1 |
| ibm | db2 | 10.1 |
| ibm | db2 | 10.1 |
| ibm | db2 | 10.5 |
| ibm | db2 | 10.5 |
| ibm | db2 | 10.5 |
| ibm | db2 | 10.5 |
| ibm | db2 | 10.5 |
𝑥
= Vulnerable software versions
Ubuntu Releases
References