Lucene search
HistoryAug 14, 2024 - 6:15 p.m.
CVE-2024-37529
ibm
db2
linux
windows
memory allocation
denial of service
vulnerability
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
14.1%
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 could allow an authenticated user to cause a denial of service with a specially crafted query due to improper memory allocation. IBM X-Force ID: 294295.
Affected configurations
Node
ibmdb2Range11.1.4–11.1.4.7aix
ORibmdb2Range11.1.4–11.1.4.7linux
ORibmdb2Range11.1.4–11.1.4.7unix
ORibmdb2Range11.1.4–11.1.4.7windows
ORibmdb2Range11.5.0–11.5.9aix
ORibmdb2Range11.5.0–11.5.9linux
ORibmdb2Range11.5.0–11.5.9unix
ORibmdb2Range11.5.0–11.5.9windows
Related
cve
cve
CVE-2024-37529
2024-08-14 18:15:12
ibm
ibm
cvelist
cvelist
CVE-2024-37529 IBM Db2 denial of service
2024-08-14 17:44:03
vulnrichment
vulnrichment
CVE-2024-37529 IBM Db2 denial of service
2024-08-14 17:44:03
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
14.1%
Related for NVD:CVE-2024-37529