Lucene search

K

79 matches found

CVE
CVE
added 2018/11/09 1:29 a.m.45 views

CVE-2018-1802

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 binaries load shared libraries from an untrusted path potentially giving low privilege user full access to the DB2 instance account by loading a malicious shared library. IBM X-Force ID: 149640.

8.4CVSS7.4AI score0.00114EPSS
CVE
CVE
added 2019/04/03 2:29 p.m.45 views

CVE-2018-1936

IBM DB2 9.7, 10.1, 10.5, and 11.1 libdb2e.so.1 is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. IBM X-Force ID: 153316.

8.4CVSS7.7AI score0.00058EPSS
CVE
CVE
added 2018/05/25 2:29 p.m.44 views

CVE-2018-1452

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 contains a vulnerability that could allow a local user to overwrite arbitrary files owned by the DB2 instance owner. IBM X-Force ID: 140047.

5.5CVSS5.5AI score0.00066EPSS
CVE
CVE
added 2018/05/25 2:29 p.m.44 views

CVE-2018-1565

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could allow a local user to overflow a buffer which may result in a privilege escalation to the DB2 instance owner. IBM X-Force ID: 143022.

8.4CVSS7.7AI score0.00061EPSS
CVE
CVE
added 2018/07/10 4:29 p.m.44 views

CVE-2018-1566

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could allow a local user to execute arbitrary code due to a format string error. IBM X-Force ID: 143023.

8.4CVSS7.7AI score0.00083EPSS
CVE
CVE
added 2019/03/11 10:29 p.m.44 views

CVE-2019-4015

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local attacker to execute arbitrary code on the system as root. IBM X-ForceID: 155893.

8.4CVSS7.7AI score0.00098EPSS
CVE
CVE
added 2019/03/11 10:29 p.m.43 views

CVE-2018-1978

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local attacker to execute arbitrary code on the system as root. IBM X-ForceID: 154069.

8.4CVSS7.7AI score0.00077EPSS
CVE
CVE
added 2019/03/11 10:29 p.m.43 views

CVE-2018-1980

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local attacker to execute arbitrary code on the system as root. IBM X-ForceID: 154078.

8.4CVSS7.7AI score0.00077EPSS
CVE
CVE
added 2019/03/11 10:29 p.m.42 views

CVE-2019-4016

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local attacker to execute arbitrary code on the system as root. IBM X-ForceID: 155894.

8.4CVSS7.7AI score0.00098EPSS
CVE
CVE
added 2019/03/21 4:1 p.m.42 views

CVE-2019-4094

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 binaries load shared libraries from an untrusted path potentially giving low privilege user full access to root by loading a malicious shared library. IBM X-Force ID: 158014.

8.4CVSS7.3AI score0.00044EPSS
CVE
CVE
added 2018/11/09 1:29 a.m.41 views

CVE-2018-1834

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 contains a vulnerability that could allow a local user to escalate their privileges to root through a symbolic link attack. IBM X-Force ID: 150511.

7.8CVSS7.4AI score0.00041EPSS
CVE
CVE
added 2018/11/30 3:29 p.m.41 views

CVE-2018-1897

IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5., and 11.1 db2pdcfg is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. IBM X-Force ID: 152462.

8.4CVSS7.7AI score0.00117EPSS
CVE
CVE
added 2019/03/11 10:29 p.m.41 views

CVE-2018-1923

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is affected by buffer overflow vulnerability that can potentially result in arbitrary code execution. IBM X-Force ID: 152859.

8.4CVSS7.8AI score0.0014EPSS
CVE
CVE
added 2018/05/25 2:29 p.m.40 views

CVE-2018-1451

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 contains a vulnerability that could allow a local user to overwrite arbitrary files owned by the DB2 instance owner. IBM X-Force ID: 140046.

5.5CVSS5.8AI score0.00066EPSS
CVE
CVE
added 2018/07/10 4:29 p.m.40 views

CVE-2018-1458

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10,1, 10.5 and 11.1 could allow a local user to execute arbitrary code and conduct DLL hijacking attacks. IBM X-Force ID: 140209.

7.8CVSS7.7AI score0.00284EPSS
CVE
CVE
added 2018/05/25 2:29 p.m.40 views

CVE-2018-1515

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5 and 11.1, under specific or unusual conditions, could allow a local user to overflow a buffer which may result in a privilege escalation to the DB2 instance owner. IBM X-Force ID: 141624.

7.4CVSS7.3AI score0.0005EPSS
CVE
CVE
added 2021/05/26 5:15 p.m.40 views

CVE-2019-4588

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to execute arbitrary code and conduct DLL hijacking attacks.

7.8CVSS7.8AI score0.00116EPSS
CVE
CVE
added 2018/09/21 1:29 p.m.39 views

CVE-2018-1711

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could allow a local user to to gain privileges due to allowing modification of columns of existing tasks. IBM X-Force ID: 146369.

8.4CVSS7.5AI score0.00087EPSS
CVE
CVE
added 2018/11/09 1:29 a.m.39 views

CVE-2018-1781

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could allow a local user to obtain root access by exploiting a symbolic link attack to read/write/corrupt a file that they originally did not have permission to access. IBM X-Force ID: 148804.

8.4CVSS7.2AI score0.00044EPSS
CVE
CVE
added 2018/12/14 4:29 p.m.39 views

CVE-2018-1977

IBM DB2 for Linux, UNIX and Windows 11.1 (includes DB2 Connect Server) contains a denial of service vulnerability. A remote, authenticated DB2 user could exploit this vulnerability by issuing a specially-crafted SELECT statement with TRUNCATE function. IBM X-Force ID: 154032.

6.5CVSS6.3AI score0.0031EPSS
CVE
CVE
added 2023/12/04 12:15 a.m.39 views

CVE-2023-40692

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, 11.5 is vulnerable to denial of service under extreme stress conditions. IBM X-Force ID: 264807.

7.5CVSS6AI score0.00033EPSS
CVE
CVE
added 2018/11/09 1:29 a.m.38 views

CVE-2018-1799

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could allow a local unprivileged user to overwrite files on the system which could cause damage to the database. IBM X-Force ID: 149429.

6.2CVSS6AI score0.00075EPSS
CVE
CVE
added 2018/11/09 1:29 a.m.38 views

CVE-2018-1857

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1 could allow a user to bypass FGAC control and gain access to data they shouldn't be able to see. IBM X-Force ID: 151155.

6.5CVSS6.7AI score0.0047EPSS
CVE
CVE
added 2018/05/25 2:29 p.m.37 views

CVE-2018-1488

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5 and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local attacker to execute arbitrary code on the system as root. IBM X-Force ID: 140973.

8.4CVSS7.7AI score0.00066EPSS
CVE
CVE
added 2019/03/11 10:29 p.m.37 views

CVE-2018-1922

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is affected by buffer overflow vulnerability that can potentially result in arbitrary code execution. IBM X-Force ID: 152858.

8.4CVSS7.8AI score0.0014EPSS
CVE
CVE
added 2018/05/25 2:29 p.m.36 views

CVE-2018-1450

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 contains a vulnerability that could allow a local user to overwrite arbitrary files owned by the DB2 instance owner. IBM X-Force ID: 140045.

5.5CVSS5.8AI score0.00066EPSS
CVE
CVE
added 2018/09/21 1:29 p.m.35 views

CVE-2018-1710

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.1, 10.5, and 11.1 tool db2licm is affected by buffer overflow vulnerability that can potentially result in arbitrary code execution. IBM X-Force ID: 146364.

8.4CVSS8AI score0.00122EPSS
CVE
CVE
added 2018/05/25 2:29 p.m.34 views

CVE-2018-1459

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to stack based buffer overflow, caused by improper bounds checking which could lead an attacker to execute arbitrary code. IBM X-Force ID: 140210.

7.8CVSS7.8AI score0.00129EPSS
CVE
CVE
added 2018/05/25 2:29 p.m.31 views

CVE-2018-1449

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 contains a vulnerability that could allow a local user to overwrite arbitrary files owned by the DB2 instance owner. IBM X-Force ID: 140044.

5.5CVSS5.8AI score0.00066EPSS
Total number of security vulnerabilities79