Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote authenticated users to read arbitrary text files via a crafted XML/XSLT function in a SELECT statement.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IBM DB2 安全漏洞
Vulnerability Description
IBM DB2是美国IBM公司的一套关系型数据库管理系统。该系统的执行环境主要有UNIX、Linux、IBM i、z/OS以及Windows服务器版本。 IBM DB2中存在安全漏洞。远程攻击者可借助SELECT语句中特制的‘XML/XSLT’函数利用该漏洞写入任意文本文件。以下版本受到影响:基于Linux、UNIX和Windows平台的IBM DB2 9.7版本至FP10版本,9.8版本至FP5版本,FP5,之前10.1版本,10.5版本至FP5版本。
CVSS Information
N/A
Vulnerability Type
N/A