CVE-2014-8901
Severity CVSS v4.0:
Pending analysis
Type:
CWE-399
Resource Management Errors
Publication date:
18/12/2014
Last modified:
12/04/2025
Description
IBM DB2 9.5 through FP10, 9.7 through FP10, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP5 allows remote authenticated users to cause a denial of service (CPU consumption) via a crafted XML query.
Impact
Base Score 2.0
4.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:ibm:db2:9.5:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ibm:db2:9.7:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ibm:db2:9.8:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ibm:db2:10.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:ibm:db2:10.5:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT05933
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT05936
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT05937
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT05938
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT05939
- http://www-01.ibm.com/support/docview.wss?uid=swg21692358
- http://www.securityfocus.com/bid/71734
- https://exchange.xforce.ibmcloud.com/vulnerabilities/99110
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT05933
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT05936
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT05937
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT05938
- http://www-01.ibm.com/support/docview.wss?uid=swg1IT05939
- http://www-01.ibm.com/support/docview.wss?uid=swg21692358
- http://www.securityfocus.com/bid/71734
- https://exchange.xforce.ibmcloud.com/vulnerabilities/99110