EulerOS Virtualization 2.10.1 : polkit (EulerOS-SA-2026-1139)

According to the versions of the polkit packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in polkit. When processing an XML policy with 32 or more nested elements in depth, an out-of-bounds write can be...

CVE-2025-36427

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service due to insufficient validation of special elements in data query logic...

CVE-2025-36424

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service due to improper neutralization of special elements in data query logic...

UBUNTU-CVE-2025-36427

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service due to insufficient validation of special elements in data query logic...

CVE-2025-36424

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service due to improper neutralization of special elements in data query logic...

UBUNTU-CVE-2025-36424

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service due to improper neutralization of special elements in data query logic...

CVE-2025-36366

IBM Db2 for Linux, UNIX and Windows (including Db2 Connect Server) is affected by CVE-2025-36366. A local user could cause a denial of service by executing a query that invokes the JSON_Object scalar function, triggering an unhandled exception and abnormal server termination. The bulletin specifi...

CVE-2025-36407

IBM® Db2® is vulnerable to a denial of service with a specially crafted query that uses ALTER TABLE operations...

CVE-2025-36423

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 12.1.0 - 12.1.3 could allow a local user to cause a denial of service due to improper neutralization of special elements in data query logic...

CVE-2025-36423

Summary : IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 12.1.0–12.1.3 may allow a local user to cause a denial of service due to improper neutralization of special elements in data query logic. Affected versions : 12.1.0–12.1.3. Root cause : improper handling in data query log...

CVE-2025-36424

IBM Db2 for Linux, UNIX and Windows (including Db2 Connect Server) is affected by CVE-2025-36424. The connected IBM security bulletin specifies that vulnerable releases are Db2 Server on platforms; version ranges affected are Db2 11.5.0–11.5.9 and Db2 12.1.0–12.1.3. The issue is a denial-of-servi...

CVE-2025-36424

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service due to improper neutralization of special elements in data query logic...

CVE-2025-36427

CVE-2025-36427 affects IBM Db2 for Linux, UNIX and Windows (including Db2 Connect Server). Affected versions: Db2 11.5.0–11.5.9 and 12.1.0–12.1.3 on Linux/Unix (Windows is not affected). Root cause: insufficient validation in data query logic leading to denial of service. CVSS: 3.1, base score 6....

CVE-2025-36428

CVE-2025-36428 affects IBM Db2 for Linux, UNIX and Windows (incl. Db2 Connect Server) versions 11.5.0–11.5.9 and 12.1.0–12.1.3. The issue is a denial of service caused by improper neutralization of special elements in data query logic when the RPSCAN feature is enabled. An authenticated user can ...

IBM Db2 安全漏洞

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. IBM Db2 suffers from a denial of service vulnerability that originates from improper neutralization of...

PT-2026-5451

Name of the Vulnerable Software and Affected Versions IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server versions 11.5.0 through 11.5.9 IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server versions 12.1.0 through 12.1.3 Description The software may allow a local user to...

Dell Unity operating system command injection vulnerability

Dell Unity is a virtual Unity storage environment provided by the American company Dell. Versions of Dell Unity prior to 5.5.2 contained a vulnerability related to operating system command injection. This vulnerability stemmed from improper handling of special elements, which could allow local,...

IBM Db2 code-related vulnerabilities

IBM Db2 is a relational database management system developed by IBM. The system can run on various operating systems such as UNIX, Linux, IBMi, z/OS, and Windows server versions. Versions 12.1.0 to 12.1.3 of IBM Db2 contain code vulnerabilities. These vulnerabilities stem from search path element...

IBM Db2 安全漏洞

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. IBM Db2 suffers from a denial of service vulnerability that originates from improper neutralization of...

Dell UnityVSA operating system command injection vulnerability

Dell UnityVSA is a virtual Unity storage environment provided by the American company Dell. Versions of Dell UnityVSA 5.4 and earlier contained a vulnerability related to operating system command injection. This vulnerability stemmed from improper handling of special elements, which could allow...