Db2@* Security Vulnerabilities and Issues — Db2@* CVE List

Lucene search

IbmDb2*

5 matches found

CVE•added 2024/01/22 7:15 p.m.•93 views

CVE-2023-50308

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5 under certain circumstances could allow an authenticated user to the database to cause a denial of service when a statement is run on columnar tables. IBM X-Force ID: 273393.

6.5CVSS6.2AI score0.00035EPSS

CVE•added 2024/01/22 9:15 p.m.•76 views

CVE-2023-47141

IIBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 could allow an authenticated user with CONNECT privileges to cause a denial of service using a specially crafted query. IBM X-Force ID: 270264.

6.5CVSS6.2AI score0.00036EPSS

CVE•added 2024/01/22 8:15 p.m.•73 views

CVE-2023-47152

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 is vulnerable to an insecure cryptographic algorithm and to information disclosure in stack trace under exceptional conditions.

7.5CVSS6.3AI score0.0008EPSS

CVE•added 2024/01/22 7:15 p.m.•72 views

CVE-2023-45193

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 federated server is vulnerable to a denial of service when a specially crafted cursor is used. IBM X-Force ID: 268759.

7.5CVSS7.2AI score0.00039EPSS

CVE•added 2012/09/25 8:55 p.m.•58 views

CVE-2012-3324

Directory traversal vulnerability in the UTL_FILE module in IBM DB2 and DB2 Connect 10.1 before FP1 on Windows allows remote authenticated users to modify, delete, or read arbitrary files via a pathname in the file field.

9CVSS8.5AI score0.00914EPSS