CVE-2023-47152

🗓️ 22 Jan 2024 20:03:52Reported by ibmType

IBM Db2 for Linux, UNIX and Windows 11.5 Vulnerabilit

Reporter	Title	Published	Views	Family All 21
IBM Security Bulletins	Security Bulletin: There are multiple vulnerabilities in IBM DB2 bundled with IBM Application Performance Management products.	3 May 202413:22	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM Db2 shipped with IBM Security Guardium Key Lifecycle Manager	15 Feb 202412:43	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Db2 and IBM Java SDK used by IBM Security Verify Governance - Identity Manager have multiple vulnerabilities	19 Mar 202411:50	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Db2 may affect IBM Storage Protect Server (CVE-2023-47158, CVE-2023-47145, CVE-2023-47747, CVE-2023-27859, CVE-2023-47746, CVE-2023-47152, CVE-2023-47141, CVE-2023-45193, CVE-2023-50308, 268195)	25 Mar 202409:17	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Tivoli Business Service Manager is vulnerable to an insecure cryptographic algorithm and to information disclosure due to DB2 (CVE-2023-47152)	2 Apr 202420:54	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM® Db2® affect IBM® Db2® Big SQL.	4 Jan 202512:30	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM DB2 which is shipped with IBM Intelligent Operations Center.	22 Jan 202409:19	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in Db2 affect Cloud Pak System	28 Oct 202416:03	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Tivoli Netcool Impact is vulnerable to insecure cryptographic algorithm and information disclosure due to DB2 JDBC Driver (CVE-2023-47152)	1 Jul 202403:02	–	ibm
IBM Security Bulletins	Security Bulletin: IBM® Db2® is vulnerable to an insecure cryptographic algorithm and to information disclosure in stack trace under exceptional conditions. (CVE-2023-47152)	7 Mar 202405:14	–	ibm

NVD

Vulners

Node

ibm db2Range<11.5.9

AND

ibm aixMatch-

ibm linux_on_ibm_zMatch-

linux linux_kernelMatch-

microsoft windowsMatch-

[
  {
    "defaultStatus": "unaffected",
    "product": "Db2 for Linux, UNIX and Windows",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "11.5"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7105605
security	www.security.netapp.com/advisory/ntap-20240307-0001/
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/270730

21 Nov 2024 08:29Current

6.3Medium risk

Vulners AI Score6.3

CVSS 3.15.9 - 7.5

EPSS0.00109

SSVC

CWE-209