CVE-2013-5466

Published Dec 18, 2013

Last updated 6 years ago

Overview

Description: The XSLT library in IBM DB2 and DB2 Connect 9.5 through 10.5, and the DB2 pureScale Feature 9.8 for Enterprise Server Edition, allows remote authenticated users to cause a denial of service via unspecified vectors.
Source: psirt@us.ibm.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4
Impact score: 2.9
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11ABF7CC-2FA5-4F2D-901A-2D0EF5B8E717"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE1C4DE6-EB32-4A31-9FAA-D8DA31D8CF05"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:9.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D72D43DB-9A92-4E12-853B-F5FC9421D5EA"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2952EB24-A015-4EC7-85E3-88588D0AB15B"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E232F83-BE4C-4B3E-A5B1-53F9D95F0368"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2_connect:9.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4CDD816C-7070-4118-845E-6205FE130A02"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2_connect:9.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4A8DDC8C-92D4-4078-8C82-9CB27B0DBDD2"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2_connect:9.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A174260C-45A3-4DE3-8B2C-82416196FFF3"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2_connect:10.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B343CCB4-CE4B-44D2-A04E-69031CD649EA"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2_connect:10.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1EC398F4-AA9B-446B-ABE3-236A3F72FBB9"
          },
          {
            "criteria": "cpe:2.3:a:ibm:db2_purescale_feature_9.8:-:-:-:*:-:db2_enterprise_edition:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D4080BB-DBF0-4125-B0D6-6CF217703045"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References