Ibm

Db2

319 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2025-2668

Medienbericht
  • EPSS 0.01%
  • Veröffentlicht 30.01.2026 21:28:18
  • Zuletzt bearbeitet 04.02.2026 16:34:21

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 is vulnerable to a denial of service as the server may crash when an authenticated user creates a specially crafted query.

6.5

CVE-2025-36001

Medienbericht
  • EPSS 0.01%
  • Veröffentlicht 30.01.2026 21:28:15
  • Zuletzt bearbeitet 04.02.2026 16:34:21

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow an authenticated user to cause a denial of service using a specially crafted SQL statement including XML that performs uncontrolled recu...

6.5

CVE-2025-36009

Medienbericht
  • EPSS 0.02%
  • Veröffentlicht 30.01.2026 21:28:12
  • Zuletzt bearbeitet 04.02.2026 16:34:21

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow an unauthenticated user to cause a denial of service due to excessive use of a global variable.

6.5

CVE-2025-36070

Medienbericht
  • EPSS 0.01%
  • Veröffentlicht 30.01.2026 21:28:09
  • Zuletzt bearbeitet 04.02.2026 16:34:21

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 is vulnerable to a denial of service as a trap may occur when selecting from certain types of tables.

6.5

CVE-2025-36098

Medienbericht
  • EPSS 0.01%
  • Veröffentlicht 30.01.2026 21:28:06
  • Zuletzt bearbeitet 04.02.2026 16:34:21

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow an authenticated user to cause a denial of service due to improper allocation of resources.

6.2

CVE-2025-36123

Medienbericht
  • EPSS 0%
  • Veröffentlicht 30.01.2026 21:28:03
  • Zuletzt bearbeitet 04.02.2026 16:34:21

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow a local user to cause a denial of service when copying large table containing XML data due to improper allocation of system resources.

7.2

CVE-2025-36184

Medienbericht
  • EPSS 0.02%
  • Veröffentlicht 30.01.2026 21:28:00
  • Zuletzt bearbeitet 04.02.2026 16:34:21

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 could allow an instance owner to execute malicious code that escalate their privileges to root due to execution of unnecessary privileges operated at a higher than mini...

6.2

CVE-2025-36353

Medienbericht
  • EPSS 0.01%
  • Veröffentlicht 30.01.2026 21:27:57
  • Zuletzt bearbeitet 04.02.2026 16:34:21

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow a local user to cause a denial of service due to improper neutralization of special elements in data query logic.

6.8

CVE-2025-36365

Medienbericht
  • EPSS 0.01%
  • Veröffentlicht 30.01.2026 21:27:54
  • Zuletzt bearbeitet 04.02.2026 16:34:21

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 under specific configuration of cataloged remote storage aliases could allow an authenticated user to execute unauthorized commands due to an author...

6.5

CVE-2025-36366

Medienbericht
  • EPSS 0.04%
  • Veröffentlicht 30.01.2026 21:27:51
  • Zuletzt bearbeitet 04.02.2026 16:34:21

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) could allow a user to cause a denial of service by executing a query that invokes the JSON_Object scalar function, which may trigger an unhandled exception leading to abnormal server t...