Db2@11.5.9 Security Vulnerabilities and Issues — Db2@11.5.9 CVE List

Lucene search

IbmDb211.5.9

10 matches found

CVE•added 2025/05/29 8:15 p.m.•65 views

CVE-2024-49350

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.1.0 through 11.1.4.7, 11.5.0 through 11.5.9 and 12.1.0 through 12.1.1 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query.

7.5CVSS6.4AI score0.00062EPSS

CVE•added 2025/05/05 9:15 p.m.•61 views

CVE-2025-0915

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through 12.1.1 under specific configurations could allow an authenticated user to cause a denial of service due to insufficient release of allocated memory resources.

6.5CVSS6.7AI score0.00104EPSS

CVE•added 2025/05/05 9:15 p.m.•57 views

CVE-2025-1000

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through 12.1.1 could allow an authenticated user to cause a denial of service when connecting to a z/OS database due to improper handling of automatic client rerouting.

6.5CVSS6.8AI score0.00104EPSS

CVE•added 2025/05/29 8:15 p.m.•57 views

CVE-2025-3050

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through 12.1.1 could allow an authenticated user to cause a denial of service when using Q replication due to the improper allocation of CPU resources.

6.5CVSS5.3AI score0.00062EPSS

CVE•added 2025/05/29 8:15 p.m.•56 views

CVE-2025-2518

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through 12.1.1 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query.

7.5CVSS5.3AI score0.00062EPSS

CVE•added 2025/05/05 5:18 p.m.•54 views

CVE-2025-1992

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through 12.1.1 could allow an authenticated user in federation environment, to cause a denial of service due to insufficient release of allocated memory after usage.

6.5CVSS6AI score0.00104EPSS

CVE•added 2025/07/29 7:15 p.m.•15 views

CVE-2024-52894

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5.0.0 through 10.5.0.11, 11.1.0 through 11.1.4.7, 11.5.0 through 11.5.9, and 12.1.0 through 12.1.2 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query.

4.9CVSS6.9AI score0.00055EPSS

CVE•added 2025/07/29 7:15 p.m.•13 views

CVE-2024-49828

7.5CVSS6.9AI score0.00054EPSS

CVE•added 2025/07/29 7:15 p.m.•13 views

CVE-2024-51473

7.5CVSS6.9AI score0.00054EPSS

CVE•added 2025/07/29 7:15 p.m.•12 views

CVE-2025-36071

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through 12.1.2 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query due to improper release of memory resources.

7.5CVSS6.4AI score0.00054EPSS