CVE-2013-5466

3 documents3 sources

Severity

4.0MEDIUM

EPSS

1.0%

top 22.59%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM DB2 IBM DB2 Connect

Timeline

PublishedDec 18

Latest updateMay 14

Description

The XSLT library in IBM DB2 and DB2 Connect 9.5 through 10.5, and the DB2 pureScale Feature 9.8 for Enterprise Server Edition, allows remote authenticated users to cause a denial of service via unspecified vectors.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 8.0 | Impact: 2.9

Affected Packages2 packages

▶NVDibm/db2_connect5 versions+4

▶NVDibm/db25 versions+4

🔴Vulnerability Details

GHSA

GHSA-frg9-cqf7-69jc: The XSLT library in IBM DB2 and DB2 Connect 9↗2022-05-14

▶

CVEList

CVE-2013-5466: The XSLT library in IBM DB2 and DB2 Connect 9↗2013-12-18

▶