CVE-2017-1297

🗓️ 27 Jun 2017 16:00:00Reported by ibmType

IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, and 11.1 vulnerability (CVE-2017-1297

Reporter	Title	Published	Views	Family All 18
0day.today	IBM DB2 9.7 / 10.1 / 10.5 / 11.1 - Command Line Processor Buffer Overflow Exploit	27 Jun 201700:00	–	zdt
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM® Db2® affects IBM Security Key Lifecycle Manager.	6 Aug 201809:39	–	ibm
IBM Security Bulletins	Security Bulletin: Security vulnerabilities have been identified in DB2 which is shipped with IBM Performance Management products	17 Jun 201815:46	–	ibm
IBM Security Bulletins	Security Bulletin: BigInsights is affected by multiple vulnerabilities in Db2	18 Jul 202023:17	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple DB2 vulnerabilities affect IBM Spectrum Protect (formerly Tivoli Storage Manger) Server (CVE-2017-1105, CVE-2017-1297)	17 Jun 201815:46	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM DB2 shipped with IBM Predictive Maintenance and Quality (CVE-2016-9840, CVE-2016-9841, CVE-2017-1297, CVE-2017-1105)	25 Jun 201805:54	–	ibm
CNVD	IBM DB2 Buffer Overflow Vulnerability (CNVD-2017-14908)	23 Jun 201700:00	–	cnvd
Cvelist	CVE-2017-1297	27 Jun 201716:00	–	cvelist
Tenable Nessus	IBM DB2 9.7 < FP11 Special Build 36792 / 10.1 < FP6 Special Build 36792 / 10.5 < FP8 Special Build 36792 / 11.1.2.2 < FP2 Special Build 36792 Multiple Vulnerabilities (Windows)	15 Sep 201700:00	–	nessus
Tenable Nessus	IBM DB2 9.7 < FP11 Special Build 36621 / 10.1 < FP6 Special Build 36610 / 10.5 < FP8 Special Build 36605 / 11.1.2 < FP2 Multiple Vulnerabilities (UNIX)	30 Jun 201700:00	–	nessus

NVD

Vulners

Node

ibm data_server_clientMatch-

ibm data_server_driver_for_odbc_and_cliMatch-

ibm data_server_driver_packageMatch-

ibm data_server_runtime_clientMatch-

ibm db2Match9.7advanced_enterprise

ibm db2Match9.7advanced_workgroup

ibm db2Match9.7enterprise

ibm db2Match9.7express

ibm db2Match9.7workgroup

ibm db2Match10.1advanced_enterprise

ibm db2Match10.1advanced_workgroup

ibm db2Match10.1enterprise

ibm db2Match10.1express

ibm db2Match10.1workgroup

ibm db2Match10.5advanced_enterprise

ibm db2Match10.5advanced_workgroup

ibm db2Match10.5enterprise

ibm db2Match10.5express

ibm db2Match10.5workgroup

ibm db2Match11.1advanced_enterprise

ibm db2Match11.1advanced_workgroup

ibm db2Match11.1enterprise

ibm db2Match11.1express

ibm db2Match11.1workgroup

ibm db2_connectMatch9.7application_server

ibm db2_connectMatch9.7enterprise

ibm db2_connectMatch9.7unlimited

ibm db2_connectMatch10.1application_server

ibm db2_connectMatch10.1enterprise

ibm db2_connectMatch10.1unlimited

ibm db2_connectMatch10.5application_server

ibm db2_connectMatch10.5enterprise

ibm db2_connectMatch10.5unlimited

ibm db2_connectMatch11.1.0.0application_server

ibm db2_connectMatch11.1.0.0enterprise

ibm db2_connectMatch11.1.0.0unlimited

AND

linux linux_kernelMatch-

microsoft windowsMatch-

[
  {
    "product": "DB2 for Linux, UNIX and Windows",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "10.5"
      },
      {
        "status": "affected",
        "version": "10.1"
      },
      {
        "status": "affected",
        "version": "9.7"
      },
      {
        "status": "affected",
        "version": "11.1"
      }
    ]
  }
]

Source	Link
exploit-db	www.exploit-db.com/exploits/42260/
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/125159
ibm	www.ibm.com/support/docview.wss
securityfocus	www.securityfocus.com/bid/99271
securitytracker	www.securitytracker.com/id/1038772

13 May 2026 00:24Current

7.3High risk

Vulners AI Score7.3

CVSS 24.4

CVSS 37.3

EPSS0.00266

CWE-119