Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
solid.exe in IBM solidDB before 4.5.181, 6.0.x before 6.0.1067, 6.1.x and 6.3.x before 6.3.47, and 6.5.x before 6.5.0.3 uses a password-hash length specified by the client, which allows remote attackers to bypass authentication via a short length value.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM solidDB solid.exe认证绕过漏洞
Vulnerability Description
IBM solidDB是美国IBM公司的一套关系型内存数据库软件。该软件具有速度快、可用性高、成本低等特点。 IBM solidDB中的solid.exe通过客户端使用了指定的哈希密码长度。远程攻击者可以借助超短长度值绕过认证。 该漏洞存在于IBM solidDB 4.5.181之前版本,6.0.1067之前的6.0.x版本,6.3.47之前的6.1.x和6.3.x版本,及6.5.0.3之前的6.5.x版本中。
CVSS Information
N/A
Vulnerability Type
N/A