CVE-2007-4418

3 documents3 sources
Severity
5.5MEDIUM
EPSS
0.8%
top 25.61%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM DB2 Universal Database
Timeline
PublishedAug 18
Latest updateMay 1

Description

IBM DB2 UDB 8 before Fixpak 15 does not properly check authorization, which allows remote authenticated users with a certain SELECT privilege to have an unknown impact via unspecified vectors. NOTE: this issue is probably related to CVE-2007-1089, but this is uncertain due to lack of details.

CVSS vector

AV:N/AC:L/C:N/I:P/A:PExploitability: 8.0 | Impact: 4.9

Affected Packages1 packages

Patches

Patch: secunia.comPatch: secunia.com

🔴Vulnerability Details

2
GHSA
GHSA-78qc-jhj6-3x6x: IBM DB2 UDB 8 before Fixpak 15 does not properly check authorization, which allows remote authenticated users with a certain SELECT privilege to have2022-05-01
CVEList
CVE-2007-4418: IBM DB2 UDB 8 before Fixpak 15 does not properly check authorization, which allows remote authenticated users with a certain SELECT privilege to have2007-08-18
CVE-2007-4418 (MEDIUM CVSS 5.5) | IBM DB2 UDB 8 before Fixpak 15 does | cvebase.io