Is CVE-2010-3193 being actively exploited?

It is not currently in CISA's KEV catalog. Its EPSS exploitation probability is 3%.

What products does CVE-2010-3193 affect?

Tracked products affected include IBM Db2. Check the version you run to see whether it is affected.

How do I fix CVE-2010-3193?

Apply the vendor fix promptly. Upgrade affected products to a fixed version.

CVE-2010-3193

Q: What is CVE-2010-3193?

CVE-2010-3193 is a high-severity software vulnerability with a CVSS score of 10. Unspecified vulnerability in the DB2STST program in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 has unknown impact and attack vectors.

HIGH severity · CVSS 10

10CVSS HIGH

Summary

Unspecified vulnerability in the DB2STST program in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 has unknown impact and attack vectors.

Impact & exploitability

Attack vectorNetwork

Attack complexityLow

Privileges required—

User interaction—

Confidentiality impact—

Integrity impact—

Availability impact—

Exploit probability (EPSS)3%

AV:N/AC:L/Au:N/C:C/I:C/A:C

Affected products we track (1)

IBM Db2

Recommendation

Apply the vendor fix promptly. Open any affected product above for its exact safe version.

Additional information

NVD record
http://secunia.com/advisories/41218Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC65408Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC65703Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IC65742Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21426108Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg21432298Advisory
http://www.vupen.com/english/advisories/2010/2225Advisory
ftp://public.dhe.ibm.com/ps/products/db2/fixes/english-us/aparlist/db2_v95/APARLIST.TXT