Executive Summary

Informations
Name CVE-2014-0919 First vendor Publication 2015-05-07
Vendor Cve Last vendor Modification 2016-11-28

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:S/C:P/I:N/A:N)
Cvss Base Score 4 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 8 Authentication Requires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

IBM DB2 9.5 through 10.5 on Linux, UNIX, and Windows stores passwords during the processing of certain SQL statements by the monitoring and audit facilities, which allows remote authenticated users to obtain sensitive information via commands associated with these facilities.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0919

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-200 Information Exposure

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 25

Nessus® Vulnerability Scanner

Date Description
2015-07-18 Name : The remote database server is affected by multiple vulnerabilities.
File : db2_101fp5.nasl - Type : ACT_GATHER_INFO
2015-07-18 Name : The remote database server is affected by multiple vulnerabilities.
File : db2_97fp10_multi_vuln.nasl - Type : ACT_GATHER_INFO
2015-06-09 Name : The remote database server is affected by an information disclosure vulnerabi...
File : db2_101fp4_IT07553_cred.nasl - Type : ACT_GATHER_INFO
2015-06-09 Name : The remote database server is affected by an information disclosure vulnerabi...
File : db2_105fp5_IT07554_cred.nasl - Type : ACT_GATHER_INFO
2015-06-09 Name : The remote database server is affected by an information disclosure vulnerabi...
File : db2_97fp10_IT07547_cred.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source Url
AIXAPAR http://www-01.ibm.com/support/docview.wss?uid=swg1IT07397
http://www-01.ibm.com/support/docview.wss?uid=swg1IT07547
http://www-01.ibm.com/support/docview.wss?uid=swg1IT07552
http://www-01.ibm.com/support/docview.wss?uid=swg1IT07553
http://www-01.ibm.com/support/docview.wss?uid=swg1IT07554
BID http://www.securityfocus.com/bid/74217
CONFIRM http://www-01.ibm.com/support/docview.wss?uid=swg21698021
SECTRACK http://www.securitytracker.com/id/1032247

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
Date Informations
2021-05-04 12:29:40
  • Multiple Updates
2021-04-22 01:35:58
  • Multiple Updates
2020-05-23 00:39:43
  • Multiple Updates
2016-11-29 00:24:51
  • Multiple Updates
2016-08-27 13:26:29
  • Multiple Updates
2016-04-27 00:10:38
  • Multiple Updates
2015-10-08 21:22:51
  • Multiple Updates
2015-09-10 13:26:20
  • Multiple Updates
2015-06-10 13:27:35
  • Multiple Updates
2015-05-21 00:26:36
  • Multiple Updates
2015-05-19 21:27:24
  • Multiple Updates
2015-05-14 21:27:28
  • Multiple Updates
2015-05-14 09:26:07
  • Multiple Updates
2015-05-08 21:26:02
  • Multiple Updates
2015-05-08 09:25:55
  • First insertion