Lucene search
IbmCVELIST:CVE-2024-35152HistoryAug 14, 2024 - 5:40 p.m.
CVE-2024-35152 IBM Db2 denial of service
2024-08-1417:40:25
CWE-789
ibm
www.cve.org
4
ibm
db2
denial of service
memory allocation
x-force id
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
14.1%
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 could allow an authenticated user to cause a denial of service with a specially crafted query due to improper memory allocation. IBM X-Force ID: 292639.
CNA Affected
[
{
"cpes": [
"cpe:2.3:a:ibm:db2:11.1:*:*:*:*:linux:*:*",
"cpe:2.3:a:ibm:db2:11.1:*:*:*:*:unix:*:*",
"cpe:2.3:a:ibm:db2:11.1:*:*:*:*:aix:*:*",
"cpe:2.3:a:ibm:db2:11.1:*:*:*:*:hp-ux:*:*",
"cpe:2.3:a:ibm:db2:11.1:*:*:*:*:windows:*:*"
],
"defaultStatus": "unaffected",
"product": "Db2 for Linux, UNIX and Windows",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "11.5"
}
]
}
]Related
cve
cve
CVE-2024-35152
2024-08-14 18:15:12
nessus
nessus
IBM DB2 DoS (7165342) (Unix)
2024-08-23 00:00:00
IBM DB2 DoS (7165342) (Windows)
2024-08-23 00:00:00
ibm
ibm
Security Bulletin: IBM® Db2® is vulnerable to a denial of service when querying certain tables using a specially crafted statement (CVE-2024-35152)
2024-08-13 21:14:19
vulnrichment
vulnrichment
CVE-2024-35152 IBM Db2 denial of service
2024-08-14 17:40:25
nvd
nvd
CVE-2024-35152
2024-08-14 18:15:12
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
14.1%
Related for CVELIST:CVE-2024-35152