CVE-2013-6744 — IBM DB2 vulnerability
Severity
8.5HIGHNVD
EPSS
2.1%
top 16.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMay 30
Latest updateMay 17
Description
The Stored Procedure infrastructure in IBM DB2 9.5, 9.7 before FP9a, 10.1 before FP3a, and 10.5 before FP3a on Windows allows remote authenticated users to gain privileges by leveraging the CONNECT privilege and the CREATE_EXTERNAL_ROUTINE authority.
CVSS vector
AV:N/AC:M/C:C/I:C/A:CExploitability: 6.8 | Impact: 10.0