16 matches found
ROS-20260429-73-0013
A vulnerability in the PostgreSQL database management system is related to incorrect array indexing. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code in the context of the current user using specially crafted queries...
CVE-2024-9188
Specially constructed queries cause cross platform scripting leaking administrator tokens...
PT-2025-3711
Name of the Vulnerable Software and Affected Versions Software affected versions not specified Description The issue involves specially constructed queries that cause cross-platform scripting, resulting in the leakage of administrator tokens. This allows for potential unauthorized access and...
PT-2025-2769
Name of the Vulnerable Software and Affected Versions: ETM affected versions not specified Description: Specially constructed queries targeting ETM could discover active remote access sessions. Recommendations: At the moment, there is no information about a newer version that contains a fix for...
PT-2024-29556 · Ibm · Ibm Db2
Name of the Vulnerable Software and Affected Versions: IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server versions 10.5, 11.1, and 11.5 Description: The issue is a denial of service, where the server may crash under certain conditions with a specially crafted query. Recommendations:...
Security Bulletin: Multiple vulnerabilities in IBM® Db2® affect IBM® Db2® Big SQL.
Summary There are multiple vulnerabilities in IBM® Db2® 11.5 used by IBM® Db2® Big SQL 7 on IBM Cloud Pak for Data 4.7 and earlier. These issues were disclosed in an IBM® Db2® Security Bulletin in July 2023. Vulnerability Details CVEID:CVE-2023-30447 DESCRIPTION: IBM Db2 for Linux, UNIX and Windo...
Security Bulletin: Multiple Vulnerabilities in Db2 affect IBM Cloud Pak System.
Summary Multiple Vulnerabilities in Db2 affect Cloud Pak System. Vulnerability Details CVEID:CVE-2023-30447 DESCRIPTION: IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM...
The vulnerability of the IBM DB2 database management system arises from the improper assignment of permissions for critical resources. This allows a perpetrator to gain unauthorized access to protected information or cause service failures.
The vulnerability of the IBM DB2 database management system is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information or cause service failures by sending specially crafted...
CVE-2020-7929
A flaw was found in mongodb. A user authorized to perform database queries may cause denial of service by issuing specially crafted queries, which violate an invariant in the query subsystem's support for $regex. The highest threat from this vulnerability is to system availability...
Denial Of Service (DoS)
MongoDB is vulnerable to denial of service attacks. A remote attacker with privileges to perform database queries may cause denial of service conditions by issuing specially crafted queries...
CVE-2018-20803
Removed by vendor...
CVE-2019-2393
A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which use $lookup and collations. This issue affects MongoDB Server v4.2 versions prior to 4.2.1; MongoDB Server v4.0 versions prior to 4.0.13 and MongoDB Server v3.6 versions prior t...
Input validation
A user authorized to perform database queries may trigger denial of service by issuing specially crafted queries, which use the $mod operator to overflow negative values. This issue affects: MongoDB Inc. MongoDB Server v4.4 versions prior to 4.4.1; v4.2 versions prior to 4.2.9; v4.0 versions prio...
MySQL 5.0.x - IF Query Handling Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23911/info MySQL is prone to a remote denial-of-service vulnerability because it fails to handle certain specially crafted queries. An attacker can exploit this issue to crash the application, denying access to legitimate...
bind (important)
specially crafted DNS queries could crash the bind name server CVE-2011-4313...
GLSA-200703-15 : PostgreSQL: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200703-15 PostgreSQL: Multiple vulnerabilities PostgreSQL does not correctly check the data types of the SQL function arguments under unspecified circumstances nor the format of the provided tables in the query planner. Impact : A...