CVE-2010-3735 — IBM DB2 vulnerability
Severity
2.1LOWNVD
EPSS
0.4%
top 38.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedOct 5
Latest updateMay 17
Description
The "Query Compiler, Rewrite, Optimizer" component in IBM DB2 UDB 9.5 before FP6a allows remote authenticated users to cause a denial of service (CPU consumption) via a crafted query involving certain UNION ALL views, leading to an indefinitely large amount of compilation time.
CVSS vector
AV:N/AC:H/C:N/I:N/A:PExploitability: 3.9 | Impact: 2.9