CVE-2017-1150
Published Mar 8, 2017
Last updated 5 years ago
Overview
- Description
- IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.1, 10.5, and 11.1 could allow an authenticated attacker with specialized access to tables that they should not be permitted to view. IBM Reference #: 1999515.
- Source
- psirt@us.ibm.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.0
- Type
- Primary
- Base score
- 3.1
- Impact score
- 1.4
- Exploitability score
- 1.6
- Vector string
- CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
- Severity
- LOW
CVSS 2.0
- Type
- Primary
- Base score
- 3.5
- Impact score
- 2.9
- Exploitability score
- 6.8
- Vector string
- AV:N/AC:M/Au:S/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-269
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2952EB24-A015-4EC7-85E3-88588D0AB15B"
},
{
"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:advanced_enterprise:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2ECC11D3-7D77-4823-8B34-DD76E131D74C"
},
{
"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:advanced_workgroup:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E1D36687-32AF-43E2-97D9-FDF602F89318"
},
{
"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:enterprise:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DD80ADF4-35D3-4534-AACD-C00D80870723"
},
{
"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:express:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8D274B00-C986-4A5D-94B2-79F4A613D951"
},
{
"criteria": "cpe:2.3:a:ibm:db2:10.1:*:*:*:workgroup:*:*:*",
"vulnerable": true,
"matchCriteriaId": "67A935CA-7AF6-4DA9-958E-DF4BC8E2B3BF"
},
{
"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6E232F83-BE4C-4B3E-A5B1-53F9D95F0368"
},
{
"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:advanced_enterprise:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A6B1A4DC-7062-4349-8D1A-3DE4B0E68FC8"
},
{
"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:advanced_workgroup:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B3681F43-F23B-413D-B871-A40821F4988B"
},
{
"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:enterprise:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AE645126-ECD0-40FB-B2BA-5C9EF33EBE69"
},
{
"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:express:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9AFEA656-426C-4F18-9737-8985531C7A93"
},
{
"criteria": "cpe:2.3:a:ibm:db2:10.5:*:*:*:workgroup:*:*:*",
"vulnerable": true,
"matchCriteriaId": "09B0333F-0E27-40B3-A0DC-618BEA97CBC2"
},
{
"criteria": "cpe:2.3:a:ibm:db2:11.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0DC3F2DB-9AE2-4B11-A838-167E857D831D"
},
{
"criteria": "cpe:2.3:a:ibm:db2:11.1:*:*:*:advanced_enterprise:*:*:*",
"vulnerable": true,
"matchCriteriaId": "56AA8839-8926-40F1-BB9A-AB648DE7F272"
},
{
"criteria": "cpe:2.3:a:ibm:db2:11.1:*:*:*:advanced_workgroup:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6ABE0FCB-8E32-4AB6-A8D8-79159FCDD889"
},
{
"criteria": "cpe:2.3:a:ibm:db2:11.1:*:*:*:enterprise:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5D92ADEC-6ED8-4B07-AB75-204AED0BF896"
},
{
"criteria": "cpe:2.3:a:ibm:db2:11.1:*:*:*:express:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A2E6CBD8-7DD7-44F7-8F5D-D79074561AB8"
},
{
"criteria": "cpe:2.3:a:ibm:db2:11.1:*:*:*:workgroup:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5273074C-9C2F-458C-9333-BD16B59008CA"
}
],
"operator": "OR"
}
]
}
]