Db2@11.5.0 Security Vulnerabilities and Issues — Db2@11.5.0 CVE List

Lucene search

IbmDb211.5.0

11 matches found

CVE•added 2024/12/07 2:15 p.m.•66 views

CVE-2024-41762

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query.

6.5CVSS5.3AI score0.0007EPSS

CVE•added 2024/08/14 6:15 p.m.•63 views

CVE-2024-35136

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) federated server 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query under certain non default conditions. IBM X-Force ID: 291307.

6.5CVSS5.8AI score0.00209EPSS

CVE•added 2024/11/21 11:15 a.m.•63 views

CVE-2024-45663

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1, 11.5, and 12.1 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query.

7.5CVSS6.3AI score0.00191EPSS

CVE•added 2024/12/07 1:15 p.m.•62 views

CVE-2024-37071

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 could allow an authenticated user to cause a denial of service with a specially crafted query due to improper memory allocation.

6.5CVSS5.2AI score0.00104EPSS

CVE•added 2024/08/14 6:15 p.m.•57 views

CVE-2024-31882

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial of service, under specific non default configurations, as the server may crash when using a specially crafted SQL statement by an authenticated user. IBM X-Force ID: 287614.

6.5CVSS6.1AI score0.0024EPSS

CVE•added 2024/08/14 6:15 p.m.•57 views

CVE-2024-37529

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 could allow an authenticated user to cause a denial of service with a specially crafted query due to improper memory allocation. IBM X-Force ID: 294295.

6.5CVSS6.3AI score0.00132EPSS

CVE•added 2025/05/05 5:18 p.m.•54 views

CVE-2025-1992

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through 12.1.1 could allow an authenticated user in federation environment, to cause a denial of service due to insufficient release of allocated memory after usage.

6.5CVSS6AI score0.00104EPSS

CVE•added 2025/07/29 7:15 p.m.•15 views

CVE-2024-52894

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5.0.0 through 10.5.0.11, 11.1.0 through 11.1.4.7, 11.5.0 through 11.5.9, and 12.1.0 through 12.1.2 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query.

4.9CVSS6.9AI score0.00055EPSS

CVE•added 2025/07/29 7:15 p.m.•13 views

CVE-2024-49828

7.5CVSS6.9AI score0.00054EPSS

CVE•added 2025/07/29 7:15 p.m.•13 views

CVE-2024-51473

7.5CVSS6.9AI score0.00054EPSS

CVE•added 2025/07/29 7:15 p.m.•12 views

CVE-2025-36071

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through 12.1.2 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query due to improper release of memory resources.

7.5CVSS6.4AI score0.00054EPSS