Vulnerability Description
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.1, 10.5, and 11.1 could allow an authenticated attacker with specialized access to tables that they should not be permitted to view. IBM Reference #: 1999515.
CVSS Score
3.1
LOW
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Db2 | 10.1 |
Related Weaknesses (CWE)
References
- http://www.ibm.com/support/docview.wss?uid=swg21999515PatchVendor Advisory
- http://www.securityfocus.com/bid/96597
- http://www.securitytracker.com/id/1037946
- http://www.ibm.com/support/docview.wss?uid=swg21999515PatchVendor Advisory
- http://www.securityfocus.com/bid/96597
- http://www.securitytracker.com/id/1037946
FAQ
What is CVE-2017-1150?
CVE-2017-1150 is a vulnerability with a CVSS score of 3.1 (LOW). IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.1, 10.5, and 11.1 could allow an authenticated attacker with specialized access to tables that they should not be permitted to view...
How severe is CVE-2017-1150?
CVE-2017-1150 has been rated LOW with a CVSS base score of 3.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-1150?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Db2.