CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

Positive Technologies•added 2026/05/27 12:0 a.m.•8 views

PT-2026-43979

Name of the Vulnerable Software and Affected Versions IBM Db2 versions 11.5.0 through 11.5.9 IBM Db2 versions 12.1.0 through 12.1.4 Description A denial of service can occur when a specially crafted query is executed using range partitioned tables. Recommendations At the moment, there is no...

5.5CVSS5.8AI score0.00014EPSS

Exploits0References3

CNNVD•added 2026/05/27 12:0 a.m.•5 views

IBM Db2 安全漏洞

IBM Db2 is a relational database management system developed by IBM. Versions 11.5.0 to 11.5.9 and 12.1.0 to 12.1.4 of IBM Db2 contain security vulnerabilities. These vulnerabilities arise from the use of range partition tables when special queries are executed, and could lead to denial-of-servic...

5.5CVSS5.8AI score0.00014EPSS

Exploits0References2

Vulnrichment•added 2026/04/30 9:49 p.m.•1 views

CVE-2026-1577 IBM® Db2® is vulnerable to a denial of service with a specially crafted query involving multiple subqueries

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows includes Db2 Connect Server could allow an authenticated user to cause a denial of service due to improper neutralization of special elements in data query logic...

6.5CVSS5.8AI score0.0002EPSS

Exploits0References1

Positive Technologies•added 2026/04/22 12:0 a.m.•0 views

PT-2026-34577

6.5CVSS5.8AI score0.00061EPSS

Exploits0References2

NVD•added 2026/02/17 6:20 p.m.•4 views

CVE-2025-36247

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 through 11.5.9 and 12.1.0 through 12.1.3 is vulnerable to an XML external entity injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memo...

8.2CVSS0.00235EPSS

Exploits0References1

CVE•added 2026/02/17 5:13 p.m.•16 views

CVE-2025-36247

CVE-2025-36247 affects IBM Db2 for Linux/UNIX/Windows (including Db2 Connect Server) versions 11.5.0–11.5.9 and 12.1.0–12.1.3. The vulnerability is an XML External Entity (XXE) injection when processing XML data, enabling potential disclosure of sensitive information or memory resource consumptio...

8.2CVSS5.7AI score0.00235EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2026/02/01 3:14 a.m.•4 views

CVE-2025-36428

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow an authenticated user to cause a denial of service due to improper neutralization of special elements in data query logic when the RPSCAN feature is enabled...

5.3CVSS5.9AI score0.00034EPSS

Exploits0References1

EUVD•added 2026/01/31 12:30 a.m.•1 views

EUVD-2025-206553

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 is vulnerable to a denial of service as a trap may occur when selecting from certain types of tables...

6.5CVSS5.9AI score0.00042EPSS

Exploits0References2

EUVD•added 2026/01/31 12:30 a.m.•1 views

EUVD-2025-206557

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow a local user to cause a denial of service due to improper neutralization of special elements in data query logic...

6.2CVSS5.9AI score0.0002EPSS

Exploits0References2

OSV•added 2026/01/30 10:15 p.m.•0 views

UBUNTU-CVE-2025-36001

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow an authenticated user to cause a denial of service using a specially crafted SQL statement including XML that performs uncontrolled recursion...

6.5CVSS5.9AI score0.00042EPSS

Exploits0References3

Vulnrichment•added 2026/01/30 9:28 p.m.•1 views

CVE-2025-36009 IBM Db2 Denial of Service

IBM Db2 for Linux, UNIX and Windows includes DB2 Connect Server could allow an authenticated user to cause a denial of service due to excessive use of a global variable...

6.5CVSS5.3AI score0.00044EPSS

Exploits0References1

CVE•added 2026/01/30 9:28 p.m.•8 views

CVE-2025-36184

IBM Db2 for Linux/Unix/Windows (including Db2 Connect Server) versions 11.5.0–11.5.9 are affected by CVE-2025-36184, which allows an instance owner to escalate privileges to root via execution of unnecessary privileges at a higher than minimum level. The issue is scoped to Linux platforms; Window...

7.2CVSS6.2AI score0.00042EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/01/30 9:27 p.m.•1 views

CVE-2025-36387 IBM Db2 Denial of Service

IBM Db2 for Linux, UNIX and Windows includes DB2 Connect Server 11.5.0 - 11.5.9 could allow an authenticated user to cause a denial of service when given specially crafted query...

6.5CVSS5.4AI score0.00042EPSS

Exploits0References1

Positive Technologies•added 2026/01/30 12:0 a.m.•3 views

PT-2026-5453

Name of the Vulnerable Software and Affected Versions IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server versions 11.5.0 through 11.5.9 IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server versions 12.1.0 through 12.1.3 Description The software may allow a local user to...

6.5CVSS5.9AI score0.00046EPSS

Exploits0References4

OSV•added 2025/05/05 9:15 p.m.•0 views

CVE-2025-0915

IBM Db2 for Linux, UNIX and Windows includes DB2 Connect Server 11.5.0 through 11.5.9 and 12.1.0 through 12.1.1 under specific configurations could allow an authenticated user to cause a denial of service due to insufficient release of allocated memory resources...

6.5CVSS5.8AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by