CVE-2017-1150 Information

Description

IBM DB2 for Linux UNIX and Windows (includes DB2 Connect Server) 10.1 10.5 and 11.1 could allow an authenticated attacker with specialized access to tables that they should not be permitted to view. IBM Reference : 1999515.

CVSS Vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N

Reference

http://www.ibm.com/support/docview.wss?uid=swg21999515 http://www.securityfocus.com/bid/96597 http://www.securitytracker.com/id/1037946

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

LOW

Availability Impact

NONE

Base Score

NONE

Base Severity

3.1