Vulnerabilities (CVE)

Filtered by vendor Ibm Subscribe
Filtered by product U2 Universe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2003-0580 1 Ibm 1 U2 Universe 2024-11-20 7.2 HIGH N/A
Buffer overflow in uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier allows the uvadm user to execute arbitrary code via a long -uv.install command line argument.
CVE-2003-0579 1 Ibm 1 U2 Universe 2024-11-20 4.6 MEDIUM N/A
uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier trusts the user-supplied -uv.install command line option to find and execute the uv.install program, which allows local users to gain privileges by providing a pathname that is under control of the user.
CVE-2003-0578 1 Ibm 1 U2 Universe 2024-11-20 4.6 MEDIUM 7.8 HIGH
cci_dir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root, which allows local users to gain privileges by deleting and overwriting arbitrary files.
CVE-2002-1450 1 Ibm 1 U2 Universe 2024-11-20 5.0 MEDIUM N/A
IBM UniVerse with UV/ODBC allows attackers to cause a denial of service (client crash or server CPU consumption) via a query with an invalid link between tables, possibly via a buffer overflow.