Ibm

Db2

327 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2023-29256

  • EPSS 0.06%
  • Veröffentlicht 10.07.2023 16:15:50
  • Zuletzt bearbeitet 21.11.2024 07:56:45

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to an information disclosure due to improper privilege management when certain federation features are used. IBM X-Force ID: 252046.

4.3

CVE-2023-23487

  • EPSS 0.07%
  • Veröffentlicht 10.07.2023 16:15:49
  • Zuletzt bearbeitet 21.11.2024 07:46:17

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to insufficient audit logging. IBM X-Force ID: 245918.

7.5

CVE-2023-26021

  • EPSS 0.13%
  • Veröffentlicht 28.04.2023 19:15:16
  • Zuletzt bearbeitet 21.11.2024 07:50:36

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial of service as the server may crash when compiling a specially crafted SQL query using a LIMIT clause. IBM X-Force ID: 247864.

7.5

CVE-2023-26022

  • EPSS 0.18%
  • Veröffentlicht 28.04.2023 19:15:16
  • Zuletzt bearbeitet 21.11.2024 07:50:36

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) is vulnerable to a denial of service as the server may crash when an Out of Memory occurs using the DBMS_OUTPUT module. IBM X-Force ID: 247868.

5.9

CVE-2023-25930

  • EPSS 0.19%
  • Veröffentlicht 28.04.2023 18:15:26
  • Zuletzt bearbeitet 21.11.2024 07:50:26

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.1, 11.1, and 11.5 is vulnerable to a denial of service. Under rare conditions, setting a special register may cause the Db2 server to terminate abnormally. IBM X-Force ID: 247862...

7.5

CVE-2023-27555

  • EPSS 0.06%
  • Veröffentlicht 28.04.2023 18:15:26
  • Zuletzt bearbeitet 21.11.2024 07:53:08

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5 is vulnerable to a denial of service when attempting to use ACR client affinity for unfenced DRDA federation wrappers. IBM X-Force ID: 249187.

7.5

CVE-2023-29255

  • EPSS 0.13%
  • Veröffentlicht 27.04.2023 13:15:09
  • Zuletzt bearbeitet 21.11.2024 07:56:45

IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as it may trap when compiling a variation of an anonymous block. IBM X-Force ID: 251991.

7.5

CVE-2023-27559

  • EPSS 0.16%
  • Veröffentlicht 26.04.2023 20:15:09
  • Zuletzt bearbeitet 21.11.2024 07:53:08

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as the server may crash when using a specially crafted subquery. IBM X-Force ID: 249196.

7.2

CVE-2023-29257

  • EPSS 0.22%
  • Veröffentlicht 26.04.2023 13:15:08
  • Zuletzt bearbeitet 21.11.2024 07:56:45

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to remote code execution as a database administrator of one database may execute code or read/write files from another database within the same insta...

7.5

CVE-2022-43930

  • EPSS 0.1%
  • Veröffentlicht 17.02.2023 18:15:11
  • Zuletzt bearbeitet 21.11.2024 07:27:22

IBM Db2 for Linux, UNIX and Windows 10.5, 11.1, and 11.5 is vulnerable to an Information Disclosure as sensitive information may be included in a log file. IBM X-Force ID: 241677.