VYPR
← All advisories
Unrated severityNVD Advisory· Published Jul 20, 2015· Updated May 6, 2026

CVE-2015-1883

CVE-2015-1883

Description

IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to read certain administrative files via crafted use of an automated-maintenance policy stored procedure.

Affected products

20
  • IBM/Db220 versions
    cpe:2.3:a:ibm:db2:10.1:*:*:*:advanced_enterprise:*:*:*+ 19 more
    • cpe:2.3:a:ibm:db2:10.1:*:*:*:advanced_enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:10.1:*:*:*:advanced_workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:10.1:*:*:*:enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:10.1:*:*:*:express:*:*:*
    • cpe:2.3:a:ibm:db2:10.1:*:*:*:workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:10.5:*:*:*:advanced_enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:10.5:*:*:*:advanced_workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:10.5:*:*:*:enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:10.5:*:*:*:express:*:*:*
    • cpe:2.3:a:ibm:db2:10.5:*:*:*:workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:9.7:*:*:*:advanced_enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:9.7:*:*:*:advanced_workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:9.7:*:*:*:enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:9.7:*:*:*:express:*:*:*
    • cpe:2.3:a:ibm:db2:9.7:*:*:*:workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:9.8:*:*:*:advanced_enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:9.8:*:*:*:advanced_workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:9.8:*:*:*:enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:9.8:*:*:*:express:*:*:*
    • cpe:2.3:a:ibm:db2:9.8:*:*:*:workgroup:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

7

News mentions

0

No linked articles in our index yet.