Vulnerability Database

315,363

Total vulnerabilities in the database

CVE-2014-0919

IBM DB2 9.5 through 10.5 on Linux, UNIX, and Windows stores passwords during the processing of certain SQL statements by the monitoring and audit facilities, which allows remote authenticated users to obtain sensitive information via commands associated with these facilities.

Published: May 8, 2015
Updated: Nov 9, 2025
CVE: CVE-2014-0919
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
ibm / db2	10.1	10.1.x
ibm / db2	10.5	10.5.x
ibm / db2	9.8	9.8.x
ibm / db2	9.7	9.7.x
ibm / db2	9.5	9.5.x

http://www-01.ibm.com/support/docview.wss?uid=swg1IT07397
http://www-01.ibm.com/support/docview.wss?uid=swg1IT07547
http://www-01.ibm.com/support/docview.wss?uid=swg1IT07552
http://www-01.ibm.com/support/docview.wss?uid=swg1IT07553
http://www-01.ibm.com/support/docview.wss?uid=swg1IT07554
http://www-01.ibm.com/support/docview.wss?uid=swg21698021
http://www.securityfocus.com/bid/74217
http://www.securitytracker.com/id/1032247

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo