CVE-2009-2859 — IBM DB2 vulnerability

CWE-2643 documents3 sources

Severity

4.6MEDIUMNVD

EPSS

0.1%

top 78.01%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

1

Timeline

PublishedAug 19

Latest updateMay 3

Description

IBM DB2 8.1 before FP18 allows attackers to obtain unspecified access via a das command.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

▶NVDibm/db28.1+1

Patches

Patch: www-01.ibm.com ↗Patch: www.vupen.com ↗Patch: www-01.ibm.com ↗

🔴Vulnerability Details

2

GHSA

GHSA-h388-h6q7-p8q8: IBM DB2 8↗2022-05-03

▶

CVEList

CVE-2009-2859: IBM DB2 8↗2009-08-19

▶

CVE-2009-2859 — IBM DB2 vulnerability | cvebase