Ibm

Db2

340 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 2.34%
  • Veröffentlicht 16.12.2009 18:30:00
  • Zuletzt bearbeitet 16.06.2026 23:13:28

Multiple unspecified vulnerabilities in bundled stored procedures in the Spatial Extender component in IBM DB2 9.5 before FP5 have unknown impact and remote attack vectors, related to "remote exploits."

  • EPSS 0.44%
  • Veröffentlicht 02.12.2009 11:30:00
  • Zuletzt bearbeitet 16.06.2026 23:13:08

dasauto in IBM DB2 8 before FP18, 9.1 before FP8, 9.5 before FP4, and 9.7 before FP1 permits execution by unprivileged user accounts, which has unspecified impact and local attack vectors.

  • EPSS 2.38%
  • Veröffentlicht 29.09.2009 21:30:00
  • Zuletzt bearbeitet 16.06.2026 23:11:40

IBM DB2 8 before FP18, 9.1 before FP8, 9.5 before FP4, and 9.7 before FP2 does not perform the expected drops of certain table functions upon a loss of privileges by the functions' definers, which has unspecified impact and remote attack vectors.

  • EPSS 2.02%
  • Veröffentlicht 29.09.2009 21:30:00
  • Zuletzt bearbeitet 16.06.2026 23:11:40

IBM DB2 8 before FP18, 9.1 before FP8, and 9.5 before FP4 allows remote authenticated users to bypass intended access restrictions, and update, insert, or delete table rows, via unspecified vectors.

  • EPSS 2.01%
  • Veröffentlicht 29.09.2009 21:30:00
  • Zuletzt bearbeitet 16.06.2026 23:11:40

IBM DB2 9.1 before FP8 does not require the SETSESSIONUSER privilege for the SET SESSION AUTHORIZATION statement, which has unspecified impact and remote attack vectors.

  • EPSS 1.66%
  • Veröffentlicht 19.08.2009 17:30:01
  • Zuletzt bearbeitet 16.06.2026 23:10:22

Memory leak in the Security component in IBM DB2 8.1 before FP18 on Unix platforms allows attackers to cause a denial of service (memory consumption) via unspecified vectors, related to private memory within the DB2 memory structure.

  • EPSS 0.37%
  • Veröffentlicht 19.08.2009 17:30:01
  • Zuletzt bearbeitet 16.06.2026 23:10:22

IBM DB2 8.1 before FP18 allows attackers to obtain unspecified access via a das command.

  • EPSS 2.18%
  • Veröffentlicht 19.08.2009 17:30:01
  • Zuletzt bearbeitet 16.06.2026 23:10:22

Unspecified vulnerability in db2jds in IBM DB2 8.1 before FP18 allows remote attackers to cause a denial of service (service crash) via "malicious packets."

  • EPSS 1.34%
  • Veröffentlicht 03.06.2009 21:00:00
  • Zuletzt bearbeitet 16.06.2026 22:53:12

IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP2 provides an INSTALL_JAR (aka sqlj.install_jar) procedure, which allows remote authenticated users to create or overwrite arbitrary files via unspecified calls.

  • EPSS 1.83%
  • Veröffentlicht 03.06.2009 21:00:00
  • Zuletzt bearbeitet 16.06.2026 23:03:02

The db2fmp process in IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP2 on Windows runs with "OS privilege," which has unknown impact and attack vectors, a different vulnerability than CVE-2008-3856.