Ibm

Db2

319 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.7

CVE-2023-35012

  • EPSS 0.02%
  • Veröffentlicht 17.07.2023 01:15:08
  • Zuletzt bearbeitet 21.11.2024 08:07:49

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 with a Federated configuration is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user with SYSADM privileges could overflow the buffer a...

7.5

CVE-2023-30446

  • EPSS 0.09%
  • Veröffentlicht 10.07.2023 16:15:52
  • Zuletzt bearbeitet 21.11.2024 08:00:11

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: 253361 .

7.5

CVE-2023-30447

  • EPSS 0.09%
  • Veröffentlicht 10.07.2023 16:15:52
  • Zuletzt bearbeitet 21.11.2024 08:00:12

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: 253436.

7.5

CVE-2023-30448

  • EPSS 0.04%
  • Veröffentlicht 10.07.2023 16:15:52
  • Zuletzt bearbeitet 13.02.2025 17:16:24

IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: 253437.

7.5

CVE-2023-30449

  • EPSS 0.04%
  • Veröffentlicht 10.07.2023 16:15:52
  • Zuletzt bearbeitet 13.02.2025 17:16:24

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query. IBM X-Force ID: 253439.

7.8

CVE-2023-30431

  • EPSS 0.04%
  • Veröffentlicht 10.07.2023 16:15:51
  • Zuletzt bearbeitet 21.11.2024 08:00:10

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 db2set is vulnerable to a buffer overflow, caused by improper bounds checking. An attacker could overflow the buffer and execute arbitrary code. IBM X-Force ID: ...

7.5

CVE-2023-30442

  • EPSS 0.09%
  • Veröffentlicht 10.07.2023 16:15:51
  • Zuletzt bearbeitet 21.11.2024 08:00:11

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 federated server is vulnerable to a denial of service as the server may crash when using a specially crafted wrapper using certain options. IBM X-Force ID: 253202.

7.5

CVE-2023-30445

  • EPSS 0.04%
  • Veröffentlicht 10.07.2023 16:15:51
  • Zuletzt bearbeitet 13.02.2025 17:16:24

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: 253357.

7.8

CVE-2023-27558

  • EPSS 0.03%
  • Veröffentlicht 10.07.2023 16:15:50
  • Zuletzt bearbeitet 21.11.2024 07:53:08

IBM Db2 on Windows 10.5, 11.1, and 11.5 may be vulnerable to a privilege escalation caused by at least one installed service using an unquoted service path. A local attacker could exploit this vulnerability to gain elevated privileges by inserting ...

8.8

CVE-2023-27867

  • EPSS 0.26%
  • Veröffentlicht 10.07.2023 16:15:50
  • Zuletzt bearbeitet 21.11.2024 07:53:36

IBM Db2 JDBC Driver for Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 could allow a remote authenticated attacker to execute arbitrary code via JNDI Injection. By sending a specially crafted request using the property clientRerouteServerListJN...