CVE-2007-6048

CWE-2643 documents3 sources
Severity
10.0CRITICAL
EPSS
0.8%
top 26.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM DB2 Universal Database
Timeline
PublishedNov 20
Latest updateMay 1

Description

IBM DB2 UDB 9.1 before Fixpak 4 uses incorrect permissions on ACLs for DB2NODES.CFG, which has unknown impact and attack vectors. NOTE: the vendor description of this issue is too vague to be certain that it is security-related.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

Patches

Patch: secunia.comPatch: www.securityfocus.comPatch: secunia.com

🔴Vulnerability Details

2
GHSA
GHSA-gqp2-v2c6-5q8j: IBM DB2 UDB 92022-05-01
CVEList
CVE-2007-6048: IBM DB2 UDB 92007-11-20
CVE-2007-6048 (CRITICAL CVSS 10) | IBM DB2 UDB 9.1 before Fixpak 4 use | cvebase.io