CVE-2011-1208

IBM solidDB 4.5.x before 4.5.182, 6.0.x before 6.0.1069, 6.1.x and 6.3.x before 6.3 FP8 (aka 6.3.49), and 6.5.x before 6.5 FP4 (aka 6.5.0.4) does not properly handle the (1) rpc_test_svc_readwrite and (2) rpc_test_svc_done commands, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted command.

Published: 2011-05-04 Last update: 2026-06-16 Assigner: [email protected] Source: [email protected]

Conclusion & alert: CVE-2011-1208 is rated Moderate Risk (62.8/100): CVSS High severity, with medium exploitation likelihood (EPSS 3.26%). Core evidence: EPSS rose +1.29% over the last day, indicating growing attacker interest. Mandatory action: Review affected assets and schedule remediation.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2011-1208

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-15 1.97% 3.26% +1.29%
2 2025-03-30 1.76% 1.97% +0.20%
3 2025-03-29 1.76%

Full EPSS history (9 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2011-1208

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
7.8 2.0 HIGH
AV:N/AC:L/Au:N/C:N/I:N/A:C Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:N)
No confidentiality impact.
Integrity impact (I:N)
No integrity impact.
Availability impact (A:C)
Complete availability impact.
10.0 6.9 [email protected]

Weakness enumeration for CVE-2011-1208

NVD evaluator notes for CVE-2011-1208

Comment: Per: http://cwe.mitre.org/data/definitions/476.html 'CWE-476: NULL Pointer Dereference'

Affected software / configurations for CVE-2011-1208

Vendor Product Version Raw CPE
ibm soliddb 4.5.167 cpe:2.3:a:ibm:soliddb:4.5.167:*:*:*:*:*:*:*
ibm soliddb 4.5.168 cpe:2.3:a:ibm:soliddb:4.5.168:*:*:*:*:*:*:*
ibm soliddb 4.5.169 cpe:2.3:a:ibm:soliddb:4.5.169:*:*:*:*:*:*:*
ibm soliddb 4.5.173 cpe:2.3:a:ibm:soliddb:4.5.173:*:*:*:*:*:*:*
ibm soliddb 4.5.175 cpe:2.3:a:ibm:soliddb:4.5.175:*:*:*:*:*:*:*
ibm soliddb 4.5.176 cpe:2.3:a:ibm:soliddb:4.5.176:*:*:*:*:*:*:*
ibm soliddb 4.5.178 cpe:2.3:a:ibm:soliddb:4.5.178:*:*:*:*:*:*:*
ibm soliddb 4.5.179 cpe:2.3:a:ibm:soliddb:4.5.179:*:*:*:*:*:*:*
ibm soliddb 4.5.180 cpe:2.3:a:ibm:soliddb:4.5.180:*:*:*:*:*:*:*
ibm soliddb 4.5.181 cpe:2.3:a:ibm:soliddb:4.5.181:*:*:*:*:*:*:*
ibm soliddb 6.0.1060 cpe:2.3:a:ibm:soliddb:6.0.1060:*:*:*:*:*:*:*
ibm soliddb 6.0.1061 cpe:2.3:a:ibm:soliddb:6.0.1061:*:*:*:*:*:*:*
ibm soliddb 6.0.1064 cpe:2.3:a:ibm:soliddb:6.0.1064:*:*:*:*:*:*:*
ibm soliddb 6.0.1065 cpe:2.3:a:ibm:soliddb:6.0.1065:*:*:*:*:*:*:*
ibm soliddb 6.0.1066 cpe:2.3:a:ibm:soliddb:6.0.1066:*:*:*:*:*:*:*
ibm soliddb 6.0.1067 cpe:2.3:a:ibm:soliddb:6.0.1067:*:*:*:*:*:*:*
ibm soliddb 6.0.1068 cpe:2.3:a:ibm:soliddb:6.0.1068:*:*:*:*:*:*:*
ibm soliddb 6.1.18 cpe:2.3:a:ibm:soliddb:6.1.18:*:*:*:*:*:*:*
ibm soliddb 6.1.20 cpe:2.3:a:ibm:soliddb:6.1.20:*:*:*:*:*:*:*
ibm soliddb 6.3.33 cpe:2.3:a:ibm:soliddb:6.3.33:*:*:*:*:*:*:*
ibm soliddb 6.3.37 cpe:2.3:a:ibm:soliddb:6.3.37:*:*:*:*:*:*:*
ibm soliddb 6.3.38 cpe:2.3:a:ibm:soliddb:6.3.38:*:*:*:*:*:*:*
ibm soliddb 6.3.39 cpe:2.3:a:ibm:soliddb:6.3.39:*:*:*:*:*:*:*
ibm soliddb 6.3.40 cpe:2.3:a:ibm:soliddb:6.3.40:*:*:*:*:*:*:*
ibm soliddb 6.3.44 cpe:2.3:a:ibm:soliddb:6.3.44:*:*:*:*:*:*:*
ibm soliddb 6.3.47 cpe:2.3:a:ibm:soliddb:6.3.47:*:*:*:*:*:*:*
ibm soliddb 6.3.48 cpe:2.3:a:ibm:soliddb:6.3.48:*:*:*:*:*:*:*
ibm soliddb 6.5.0.0 cpe:2.3:a:ibm:soliddb:6.5.0.0:*:*:*:*:*:*:*
ibm soliddb 6.5.0.1 cpe:2.3:a:ibm:soliddb:6.5.0.1:*:*:*:*:*:*:*
ibm soliddb 6.5.0.2 cpe:2.3:a:ibm:soliddb:6.5.0.2:*:*:*:*:*:*:*
ibm soliddb 6.5.0.3 cpe:2.3:a:ibm:soliddb:6.5.0.3:*:*:*:*:*:*:*

References for CVE-2011-1208

cvelogic Threat Intelligence