Ibm

Informix Dynamic Server

49 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2024-49343

Media report
  • EPSS 0.04%
  • Published 28.07.2025 15:27:37
  • Last modified 06.08.2025 17:12:57

IBM Informix Dynamic Server 12.10 and 14.10 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.

7.5

CVE-2024-49342

Media report
  • EPSS 0.06%
  • Published 28.07.2025 15:26:35
  • Last modified 06.08.2025 17:13:27

IBM Informix Dynamic Server 12.10 and 14.10 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials.

7.5

CVE-2025-1991

  • EPSS 0.14%
  • Published 28.06.2025 13:02:21
  • Last modified 14.08.2025 01:08:22

IBM Informix Dynamic Server 12.10,14.10, and15.0 could allow a remote attacker to cause a denial of service due to an integer underflow when processing packets.

5.5

CVE-2023-28527

  • EPSS 0.02%
  • Published 09.12.2023 03:15:07
  • Last modified 21.11.2024 07:55:17

IBM Informix Dynamic Server 12.10 and 14.10 cdr is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow a local user to cause a segmentation fault. IBM X-Force ID: 251206.

5.5

CVE-2023-28526

  • EPSS 0.02%
  • Published 09.12.2023 03:15:07
  • Last modified 21.11.2024 07:55:16

IBM Informix Dynamic Server 12.10 and 14.10 archecker is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow a local user to cause a segmentation fault. IBM X-Force ID: 251204.

7.8

CVE-2023-28523

  • EPSS 0.03%
  • Published 09.12.2023 03:15:06
  • Last modified 21.11.2024 07:55:16

IBM Informix Dynamic Server 12.10 and 14.10 onsmsync is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. IBM X-Force ID: 250753.

6.7

CVE-2021-20515

  • EPSS 0.07%
  • Published 30.04.2021 16:15:07
  • Last modified 21.11.2024 05:46:42

IBM Informix Dynamic Server 14.10 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local privileged user could overflow a buffer and execute arbitrary code on the system or cause a denial of service condition. IBM...

7.8

CVE-2020-4799

  • EPSS 0.04%
  • Published 08.10.2020 14:15:12
  • Last modified 21.11.2024 05:33:16

IBM Informix spatial 14.10 could allow a local user to execute commands as a privileged user due to an out of bounds write vulnerability. IBM X-Force ID: 189460.

7.8

CVE-2019-4253

  • EPSS 0.06%
  • Published 20.08.2019 19:15:11
  • Last modified 21.11.2024 04:43:22

IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local privileged Informix user to load a malicious shared library and gain root access privileges. IBM X-Force ID: 159941.

7.2

CVE-2018-1635

  • EPSS 0.07%
  • Published 20.08.2019 19:15:10
  • Last modified 21.11.2024 04:00:07

Stack-based buffer overflow in oninit in IBM Informix Dynamic Server Enterprise Edition 12.1 allows an authenticated user to execute predefined code with root privileges, such as escalating to a root shell. IBM X-Force ID: 144439.