Lucene search
HistoryAug 14, 2024 - 6:15 p.m.
CVE-2024-35136
ibm
db2
linux
unix
windows
vulnerability
denial of service
query
x-force
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
14.1%
IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) federated server 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query under certain conditions. IBM X-Force ID: 291307.
Affected configurations
Node
ibmdb2Range10.5.0–10.5.11aix
ORibmdb2Range10.5.0–10.5.11hp-ux
ORibmdb2Range10.5.0–10.5.11linux
ORibmdb2Range10.5.0–10.5.11unix
ORibmdb2Range10.5.0–10.5.11windows
ORibmdb2Range11.1.4–11.1.4.7aix
ORibmdb2Range11.1.4–11.1.4.7hp-ux
ORibmdb2Range11.1.4–11.1.4.7linux
ORibmdb2Range11.1.4–11.1.4.7unix
ORibmdb2Range11.1.4–11.1.4.7windows
ORibmdb2Range11.5.0–11.5.9aix
ORibmdb2Range11.5.0–11.5.9hp-ux
ORibmdb2Range11.5.0–11.5.9linux
ORibmdb2Range11.5.0–11.5.9unix
ORibmdb2Range11.5.0–11.5.9windows
Related
vulnrichment
vulnrichment
CVE-2024-35136 IBM Db2 denial of service
2024-08-14 17:36:09
nessus
nessus
IBM DB2 DoS (7165341) (Windows)
2024-08-23 00:00:00
IBM DB2 DoS (7165341) (Unix)
2024-08-23 00:00:00
ibm
ibm
Security Bulletin: IBM® Db2® federated server is vulnerable to a denial of service with a specially crafted query under certain conditions (CVE-2024-35136)
2024-08-20 14:30:20
cve
cve
CVE-2024-35136
2024-08-14 18:15:11
cvelist
cvelist
CVE-2024-35136 IBM Db2 denial of service
2024-08-14 17:36:09
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
14.1%
Related for NVD:CVE-2024-35136