CVE-2012-2194Path Traversal in IBM DB2

CWE-22Path Traversal3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.4%
top 42.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM DB2
Timeline
PublishedJul 25
Latest updateMay 17

Description

Directory traversal vulnerability in the SQLJ.DB2_INSTALL_JAR stored procedure in IBM DB2 9.1 before FP12, 9.5 through FP9, 9.7 through FP6, 9.8 through FP5, and 10.1 allows remote attackers to replace JAR files via unspecified vectors.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDibm/db234 versions+33

🔴Vulnerability Details

2
GHSA
GHSA-rv8c-xfq5-q5vr: Directory traversal vulnerability in the SQLJ2022-05-17
CVEList
CVE-2012-2194: Directory traversal vulnerability in the SQLJ2012-07-25
CVE-2012-2194 — Path Traversal in IBM DB2 | cvebase