Lucene search
K

18 matches found

CVE
CVE
added 2026/05/27 1:10 p.m.20 views

CVE-2026-6053

IBM Db2 is affected by CVE-2026-6053: denial of service when a specially crafted query runs against range-partitioned tables. Affected: Db2 Server 11.5.0–11.5.9 and 12.1.0–12.1.4. CVSS v3.1 base score 5.5 (LOCAL attack, low complexity, high impact on availability). Root cause: CWE-770 (unbounded ...

5.5CVSS5.8AI score0.00098EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/05/27 1:7 p.m.21 views

CVE-2026-6051

CVE-2026-6051 affects IBM Db2 11.5.0–11.5.9 and 12.1.0–12.1.4. The vulnerability is a denial of service caused by executing a specially crafted query that consumes the statement heap. Impact is a high availability concern for affected Db2 client and server installations. IBM’s bulletin confirms a...

7.5CVSS5.8AI score0.00177EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.15 views

PT-2026-43977

Name of the Vulnerable Software and Affected Versions IBM Db2 versions 11.5.0 through 11.5.9 IBM Db2 versions 12.1.0 through 12.1.4 Description A denial of service can occur when executing a specially crafted query with a small statement heap. A statement heap is a memory area used by the databas...

7.5CVSS5.9AI score0.00177EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/21 3:37 p.m.12 views

Security Bulletin: IBM® Db2® is vulnerable to a denial of service when executing a specially crafted query with a small statement heap (CVE-2026-6051)

Summary IBM® Db2® is vulnerable to a denial of service when executing a specially crafted query with a small statement heap. Vulnerability Details CVEID:CVE-2026-6051 DESCRIPTION: IBM Db2 is vulnerable to a denial of service when executing a specially crafted query with a small statement heap...

7.5CVSS5.8AI score0.00177EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2026/04/30 9:48 p.m.7 views

EUVD-2025-209600

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux, UNIX and Windows includes Db2 Connect Server could allow an authenticated user to cause a denial of service due to improper neutralization of special elements in data query logic when certain configurations exist...

5.3CVSS5.2AI score0.00221EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/02 12:0 a.m.3 views

XML External Entity Injection Vulnerability in IBM Db2

IBM Db2 is the United States International Business Machines IBM company developed a set of relational database management system, it is the main operating environment for UNIX including IBM's own AIX, Linux, IBM i formerly known as OS/400, z/OS, and Windows server versions. An XML external entit...

8.2CVSS6.5AI score0.00296EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/17 5:13 p.m.9 views

CVE-2025-36247 IBM Db2 XML External Entity Reference

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 through 11.5.9 and 12.1.0 through 12.1.3 is vulnerable to an XML external entity injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memo...

7.1CVSS5.7AI score0.00296EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/17 12:0 a.m.9 views

IBM Db2 代码问题漏洞

IBM Db2 is the United States International Business Machines IBM company developed a set of relational database management system, it is the main operating environment for UNIX including IBM's own AIX, Linux, IBM i formerly known as OS/400, z/OS, and Windows server versions. An XML external entit...

8.2CVSS5.8AI score0.00296EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/17 12:0 a.m.19 views

IBM Db2 安全漏洞

IBM Db2 is a relational database management system developed by IBM. The system can run on various operating systems such as UNIX, Linux, IBMi, z/OS, and Windows servers. Versions of IBM Db2 prior to 11.5.9 and 12.1.3 contain security vulnerabilities. These vulnerabilities stem from specific HADR...

6.5CVSS5.8AI score0.00174EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/17 12:0 a.m.13 views

PT-2026-20227

Name of the Vulnerable Software and Affected Versions IBM Db2 versions 11.5.0 through 11.5.9 IBM Db2 versions 12.1.0 through 12.1.3 Description An authenticated user may be able to cause a denial of service due to improper neutralization of special elements in data query logic. Recommendations...

6.5CVSS5.4AI score0.00233EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/31 12:30 a.m.6 views

EUVD-2025-206565

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow a local user to cause a denial of service due to improper neutralization of special elements in data query logic...

6.5CVSS5.9AI score0.00328EPSS
Exploits0References2
NVD
NVD
added 2026/01/30 10:15 p.m.8 views

CVE-2025-36353

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow a local user to cause a denial of service due to improper neutralization of special elements in data query logic...

6.2CVSS0.00152EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/30 9:28 p.m.5 views

CVE-2025-2668 IBM Db2 Denial of Service

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 is vulnerable to a denial of service as the server may crash when an authenticated user creates a specially crafted query...

6.5CVSS5.4AI score0.00347EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/30 9:27 p.m.2 views

CVE-2025-36365 IBM Db2 Privilege Escalation

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 under specific configuration of cataloged remote storage aliases could allow an authenticated user to execute unauthorized commands due to an authorization bypass vulnerability using a...

6.8CVSS5.6AI score0.00261EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/30 12:0 a.m.6 views

IBM Db2 security vulnerabilities

IBM Db2 is a relational database management system developed by IBM. The system can run on various operating systems such as UNIX, Linux, IBMi, z/OS, and Windows servers. Versions 11.5.0 to 11.5.9 of IBM Db2 contain security vulnerabilities. These vulnerabilities allow instance owners to execute...

7.2CVSS5.9AI score0.00471EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2026/01/21 6:5 p.m.5 views

Security Bulletin: IBM OpenPages is affected by multiple security vulnerabilities of DB2 Database Server (Nov 2025)

Summary IBM® Db2® Database Server is shipped as a supporting program of IBM OpenPages. Information about security vulnerabilities affecting IBM Db2 Database Server has been published in multiple security bulletins. Vulnerability Details Refer to the security bulletins listed in the...

5.4AI score
Exploits0Affected Software1
EUVD
EUVD
added 2025/11/07 9:31 p.m.5 views

EUVD-2025-38311

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux, UNIX and Windows includes DB2 Connect Server could allow a local user to cause a denial of service due to the database monitor script incorrectly detecting that the instance is still starting under specific conditions...

5.1CVSS5.7AI score0.00104EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/07 12:0 a.m.5 views

IBM Db2 安全漏洞

IBM Db2 is a relational database management system from International Business Machines IBM. The system's execution environments are mainly UNIX, Linux, IBMi, z/OS, and Windows server versions. A denial of service vulnerability exists in IBM Db2, which can be exploited by an attacker to cause a...

6.5CVSS6.3AI score0.00279EPSS
Exploits0References2
Rows per page
Query Builder