CVE-2015-1922

EUVD-2015-2027
The Data Movement implementation in IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to bypass intended access restrictions and delete table rows via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.5 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 45%
Affected Products (NVD)
VendorProductVersion
ibmdb2
9.7
ibmdb2
9.7
ibmdb2
9.7
ibmdb2
9.7
ibmdb2
9.7
ibmdb2
9.8
ibmdb2
9.8
ibmdb2
9.8
ibmdb2
9.8
ibmdb2
9.8
ibmdb2
10.1
ibmdb2
10.1
ibmdb2
10.1
ibmdb2
10.1
ibmdb2
10.1
ibmdb2
10.5
ibmdb2
10.5
ibmdb2
10.5
ibmdb2
10.5
ibmdb2
10.5
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
db2exc
precise
ignored
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
db2exc-amd64
precise
ignored
trusty
dne
utopic
dne
vivid
dne
wily
dne
xenial
dne
yakkety
dne
zesty
dne
Common Weakness Enumeration
References
http://www-01.ibm.com/support/docview.wss?uid=swg1IT08523
http://www-01.ibm.com/support/docview.wss?uid=swg1IT08524
http://www-01.ibm.com/support/docview.wss?uid=swg1IT08525
http://www-01.ibm.com/support/docview.wss?uid=swg1IT08526
http://www-01.ibm.com/support/docview.wss?uid=swg21959650
http://www.securityfocus.com/bid/75911
http://www.securitytracker.com/id/1032879
http://www-01.ibm.com/support/docview.wss?uid=swg1IT08523
http://www-01.ibm.com/support/docview.wss?uid=swg1IT08524
http://www-01.ibm.com/support/docview.wss?uid=swg1IT08525
http://www-01.ibm.com/support/docview.wss?uid=swg1IT08526
http://www-01.ibm.com/support/docview.wss?uid=swg21959650
http://www.securityfocus.com/bid/75911
http://www.securitytracker.com/id/1032879