VYPR
← All advisories
Unrated severityNVD Advisory· Published Jul 20, 2015· Updated May 6, 2026

CVE-2015-1922

CVE-2015-1922

Description

The Data Movement implementation in IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to bypass intended access restrictions and delete table rows via unspecified vectors.

Affected products

20
  • IBM/Db220 versions
    cpe:2.3:a:ibm:db2:10.1:*:*:*:advanced_enterprise:*:*:*+ 19 more
    • cpe:2.3:a:ibm:db2:10.1:*:*:*:advanced_enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:10.1:*:*:*:advanced_workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:10.1:*:*:*:enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:10.1:*:*:*:express:*:*:*
    • cpe:2.3:a:ibm:db2:10.1:*:*:*:workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:10.5:*:*:*:advanced_enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:10.5:*:*:*:advanced_workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:10.5:*:*:*:enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:10.5:*:*:*:express:*:*:*
    • cpe:2.3:a:ibm:db2:10.5:*:*:*:workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:9.7:*:*:*:advanced_enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:9.7:*:*:*:advanced_workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:9.7:*:*:*:enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:9.7:*:*:*:express:*:*:*
    • cpe:2.3:a:ibm:db2:9.7:*:*:*:workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:9.8:*:*:*:advanced_enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:9.8:*:*:*:advanced_workgroup:*:*:*
    • cpe:2.3:a:ibm:db2:9.8:*:*:*:enterprise:*:*:*
    • cpe:2.3:a:ibm:db2:9.8:*:*:*:express:*:*:*
    • cpe:2.3:a:ibm:db2:9.8:*:*:*:workgroup:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

7

News mentions

0

No linked articles in our index yet.