Ibm

Db2

327 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2025-36185

Medienbericht
  • EPSS 0.03%
  • Veröffentlicht 07.11.2025 18:40:59
  • Zuletzt bearbeitet 18.11.2025 19:03:37

IBM Db2 12.1.0 through 12.1.2 for Linux, UNIX and Windows (includes Db2 Connect Server) could allow a local user to cause a denial of service due to improper neutralization of special elements in data query logic.

7.8

CVE-2025-36186

Medienbericht
  • EPSS 0.01%
  • Veröffentlicht 07.11.2025 18:40:32
  • Zuletzt bearbeitet 18.11.2025 19:08:25

IBM Db2 12.1.0 through 12.1.3 for Linux, UNIX and Windows (includes Db2 Connect Server) under specific configurations could allow a local user to execute malicious code that escalate their privileges to root due to execution of unnecessary privileges...

8.8

CVE-2025-33012

Medienbericht
  • EPSS 0.02%
  • Veröffentlicht 07.11.2025 18:38:29
  • Zuletzt bearbeitet 19.11.2025 16:37:54

IBM Db2 10.5.0 through 10.5.11, 11.1.0 through 11.1.4.7, 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux could allow an authenticated user to regain access after account lockout due to password use after expiration date.

7.5

CVE-2025-2534

Medienbericht
  • EPSS 0.04%
  • Veröffentlicht 07.11.2025 18:36:49
  • Zuletzt bearbeitet 19.11.2025 16:44:35

IBM Db2 11.1.0 through 11.1.4.7, 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux, UNIX and Windows (includes Db2 Connect Server) is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted...

7.5

CVE-2024-47118

Medienbericht
  • EPSS 0.07%
  • Veröffentlicht 07.11.2025 18:23:07
  • Zuletzt bearbeitet 19.11.2025 16:49:17

IBM Db2 10.5.0 through 10.5.11, 11.1.0 through 11.1.4.7, 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux, UNIX and Windows (includes Db2 Connect Server) is vulnerable to a denial of service as the server may crash under certain conditions ...

7.5

CVE-2024-49828

Medienbericht
  • EPSS 0.07%
  • Veröffentlicht 29.07.2025 19:04:20
  • Zuletzt bearbeitet 13.08.2025 19:20:09

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5.0.0 through 10.5.0.11, 11.1.0 through 11.1.4.7, 11.5.0 through 11.5.9, and 12.1.0 through 12.1.2 is vulnerable to a denial of service as the server may crash under certain conditi...

7.5

CVE-2024-51473

Medienbericht
  • EPSS 0.07%
  • Veröffentlicht 29.07.2025 19:02:40
  • Zuletzt bearbeitet 13.08.2025 19:17:34

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5.0.0 through 10.5.0.11, 11.1.0 through 11.1.4.7, 11.5.0 through 11.5.9, and 12.1.0 through 12.1.2 is vulnerable to a denial of service as the server may crash under certain condi...

4.9

CVE-2024-52894

Medienbericht
  • EPSS 0.07%
  • Veröffentlicht 29.07.2025 19:00:12
  • Zuletzt bearbeitet 07.08.2025 00:28:38

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5.0.0 through 10.5.0.11, 11.1.0 through 11.1.4.7, 11.5.0 through 11.5.9, and 12.1.0 through 12.1.2 is vulnerable to a denial of service as the server may crash under certain conditi...

7.5

CVE-2025-33114

Medienbericht
  • EPSS 0.05%
  • Veröffentlicht 29.07.2025 18:41:15
  • Zuletzt bearbeitet 06.08.2025 19:42:05

IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 is vulnerable to denial of service with a specially crafted query under certain non-default conditions.

7.8

CVE-2025-33092

Medienbericht
  • EPSS 0.02%
  • Veröffentlicht 29.07.2025 18:36:58
  • Zuletzt bearbeitet 06.08.2025 19:37:37

IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 is vulnerable to a stack-based buffer overflow in db2fm, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system.