Lucene search
HistoryAug 14, 2024 - 6:15 p.m.
CVE-2024-31882
ibm
db2
linux
unix
windows
vulnerability
denial of service
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
14.1%
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial of service, under specific configurations, as the server may crash when using a specially crafted SQL statement by an authenticated user. IBM X-Force ID: 287614.
Affected configurations
Node
ibmdb2Range11.1.4–11.1.4.7aix
ORibmdb2Range11.1.4–11.1.4.7linux
ORibmdb2Range11.1.4–11.1.4.7windows
ORibmdb2Range11.5.0–11.5.9aix
ORibmdb2Range11.5.0–11.5.9linux
ORibmdb2Range11.5.0–11.5.9windows
Related
cvelist
cvelist
CVE-2024-31882 IBM Db2 denial of service
2024-08-14 17:46:48
nessus
nessus
IBM DB2 DoS (7165338) (Windows)
2024-08-23 00:00:00
IBM DB2 DoS (7165338) (Unix)
2024-08-23 00:00:00
ibm
ibm
vulnrichment
vulnrichment
CVE-2024-31882 IBM Db2 denial of service
2024-08-14 17:46:48
cve
cve
CVE-2024-31882
2024-08-14 18:15:10
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
14.1%
Related for NVD:CVE-2024-31882