CVE-2023-38729

🗓️ 03 Apr 2024 12:27:36Reported by ibmType

Reserved CVE-2023-38729 for future announcement

Reporter	Title	Published	Views	Family All 20
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Db2 may affect IBM Storage Protect Server ( CVE-2023-38729, CVE-2012-2677, CVE-2024-25030, CVE-2024-25046, CVE-2024-27254, CVE-2023-52296)	1 Jul 202405:50	–	ibm
IBM Security Bulletins	Security Bulletin: There are multiple vulnerabilities in IBM DB2 bundled with IBM Application Performance Management products.	3 May 202413:22	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM Db2 shipped with IBM Security Guardium Key Lifecycle Manager (April 2024)	17 May 202412:03	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilties affect IBM Db2 Big SQL on Cloud Pak for Data	7 Jan 202521:00	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities have been identified in IBM Db2 shipped with IBM WebSphere Remote Server	5 Apr 202422:31	–	ibm
IBM Security Bulletins	Security Bulletin: IBM® Db2® is vulnerable to sensitive information disclosure when using ADMIN_CMD with IMPORT or EXPORT (CVE-2023-38729)	30 Apr 202521:37	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in Db2 affect Cloud Pak System	28 Oct 202416:03	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Db2 and IBM WebSphere Application Server traditional used by ISVG - Identity Manager have multiple vulnerabilities	17 Apr 202407:17	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM DB2 which is shipped with IBM Intelligent Operations Center.	5 Apr 202408:23	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple IBM® Db2® security vulnerability fixes	22 Jul 202419:14	–	ibm

NVD

Vulners

Vulnrichment

Node

ibm db2Match10.5linux

ibm db2Match10.5unix

ibm db2Match10.5windows

ibm db2Match11.1linux

ibm db2Match11.1unix

ibm db2Match11.1windows

ibm db2Match11.5linux

ibm db2Match11.5unix

ibm db2Match11.5windows

AND

hp hp-uxMatch-

ibm aixMatch-

ibm linux_on_ibm_zMatch-

linux linux_kernelMatch-

microsoft windowsMatch-

oracle solarisMatch-

[
  {
    "cpes": [
      "cpe:2.3:a:ibm:db2:10.5:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:10.5:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:10.5:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:10.5:*:*:*:*:hp-ux:*:*",
      "cpe:2.3:a:ibm:db2:10.5:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:11.1:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:11.1:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:11.1:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:11.1:*:*:*:*:hp-ux:*:*",
      "cpe:2.3:a:ibm:db2:11.1:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:11.5:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:11.5:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:11.5:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:11.5:*:*:*:*:hp-ux:*:*",
      "cpe:2.3:a:ibm:db2:11.5:*:*:*:*:windows:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Db2 for Linux, UNIX and Windows",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "10.5, 11.1 ,11.5"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7145721
security	www.security.netapp.com/advisory/ntap-20240517-0004/
https	www.https//exchange.xforce.ibmcloud.com/vulnerabilities/262259

31 Jan 2025 15:42Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.16.5 - 6.8

EPSS0.00097

SSVC

CWE-200