Vulnerability Database

290,273

Total vulnerabilities in the database

CVE-2012-3324

Directory traversal vulnerability in the UTL_FILE module in IBM DB2 and DB2 Connect 10.1 before FP1 on Windows allows remote authenticated users to modify, delete, or read arbitrary files via a pathname in the file field.

  • Published: Sep 25, 2012
  • Updated: Apr 13, 2023
  • CVE: CVE-2012-3324
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 9
  • AV:N/AC:L/Au:S/C:C/I:C/A:C

CWEs:

OWASP TOP 10:

Software From Fixed in
ibm / db2 - -
ibm / db2_connect 10.1 10.1.x