Lucene search
K

15 matches found

CNVD
CNVD
added 2026/03/02 12:0 a.m.2 views

Denial of Service Vulnerability in IBM Db2

IBM Db2 is a set of relational database management system developed by the United States International Business Machines IBM Corporation, and its main operating environments are UNIX including IBM's own AIX, Linux, IBM i formerly known as OS/400, z/OS, as well as Windows server versions. A denial...

6.5CVSS6.5AI score0.0024EPSS
Exploits0References1
NVD
NVD
added 2026/02/17 6:20 p.m.8 views

CVE-2025-36247

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 through 11.5.9 and 12.1.0 through 12.1.3 is vulnerable to an XML external entity injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memo...

8.2CVSS0.00296EPSS
Exploits0References1
CVE
CVE
added 2026/02/17 5:13 p.m.37 views

CVE-2025-36247

CVE-2025-36247 affects IBM Db2 for Linux/UNIX/Windows (including Db2 Connect Server) versions 11.5.0–11.5.9 and 12.1.0–12.1.3. The vulnerability is an XML External Entity (XXE) injection when processing XML data, enabling potential disclosure of sensitive information or memory resource consumptio...

8.2CVSS5.7AI score0.00296EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/01 3:14 a.m.13 views

CVE-2025-36428

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow an authenticated user to cause a denial of service due to improper neutralization of special elements in data query logic when the RPSCAN feature is enabled...

5.3CVSS5.9AI score0.003EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/31 12:30 a.m.10 views

EUVD-2025-206553

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 is vulnerable to a denial of service as a trap may occur when selecting from certain types of tables...

6.5CVSS5.9AI score0.0035EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/31 12:30 a.m.5 views

EUVD-2025-206557

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow a local user to cause a denial of service due to improper neutralization of special elements in data query logic...

6.2CVSS5.9AI score0.00152EPSS
Exploits0References2
OSV
OSV
added 2026/01/30 10:15 p.m.4 views

UBUNTU-CVE-2025-36001

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow an authenticated user to cause a denial of service using a specially crafted SQL statement including XML that performs uncontrolled recursion...

6.5CVSS5.9AI score0.00347EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/30 9:28 p.m.7 views

CVE-2025-36009 IBM Db2 Denial of Service

IBM Db2 for Linux, UNIX and Windows includes DB2 Connect Server could allow an authenticated user to cause a denial of service due to excessive use of a global variable...

6.5CVSS5.3AI score0.00339EPSS
Exploits0References1
CVE
CVE
added 2026/01/30 9:27 p.m.20 views

CVE-2025-36384

CVE-2025-36384 affects IBM Db2 for Windows versions 12.1.0–12.1.3. The root cause is an unquoted search path element, enabling a local user with filesystem access to escalate privileges. IBM’s advisory notes a CVSSv3.1 base score of 8.4 (PR:N, UI:N, AV:L, AC:L, C:H/I:H/A:H) and indicates Windows ...

8.4CVSS5.9AI score0.00163EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/30 12:0 a.m.8 views

PT-2026-5453

Name of the Vulnerable Software and Affected Versions IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server versions 11.5.0 through 11.5.9 IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server versions 12.1.0 through 12.1.3 Description The software may allow a local user to...

6.5CVSS5.9AI score0.00355EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

IBM DB2 Privilege Escalation (7250486) (Unix)

According to its self-reported version number, IBM Db2 on Unix may be affected by a vulnerability: - IBM Db2 12.1.0 through 12.1.3 for Linux, UNIX and Windows includes Db2 Connect Server under specific configurations could allow a local user to execute malicious code that escalate their privilege...

7.8CVSS6.8AI score0.00121EPSS
Exploits0References2
OSV
OSV
added 2025/11/07 7:16 p.m.4 views

CVE-2025-36186

IBM Db2 12.1.0 through 12.1.3 for Linux, UNIX and Windows includes Db2 Connect Server under specific configurations could allow a local user to execute malicious code that escalate their privileges to root due to execution of unnecessary privileges operated at a higher than minimum level...

7.8CVSS6AI score0.00121EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/07 6:40 p.m.11 views

CVE-2025-36186 IBM Db2 privilege escalation

IBM Db2 12.1.0 through 12.1.3 for Linux, UNIX and Windows includes Db2 Connect Server under specific configurations could allow a local user to execute malicious code that escalate their privileges to root due to execution of unnecessary privileges operated at a higher than minimum level...

7.4CVSS0.00121EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/07 12:0 a.m.5 views

PT-2025-45489

Name of the Vulnerable Software and Affected Versions IBM Db2 versions 12.1.0 through 12.1.3 Description IBM Db2, under specific configurations, may allow a local user to execute malicious code and escalate privileges to root. This is due to the execution of operations at a higher privilege level...

7.4CVSS7AI score0.00121EPSS
Exploits0References5
CNVD
CNVD
added 2018/09/14 12:0 a.m.5 views

F5 BIG-IP APM Information Disclosure Vulnerability (CNVD-2019-07130)

F5 BIG-IP Access Policy Manager APM is a suite of access and security solutions from F5 America. The solution provides unified access to business-critical applications and networks. portal access is one of the portal access components. A security vulnerability exists in portal access in F5 BIG-IP...

4.3CVSS4.7AI score0.00873EPSS
Exploits0References1
Rows per page
Query Builder