CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2023-40687 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-40687
IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted RUNSTATS command on an 8TB table. IBM X-Force ID: 264809. IBM DB2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1 y 11.5 es vulnerable a la denegación de servicio con un comando RUNSTATS especialmente manipulado en una tabla de 8 TB. ID de IBM X-Force: 264809. • https://exchange.xforce.ibmcloud.com/vulnerabilities/264809 https://security.netapp.com/advisory/ntap-20240119-0001 https://www.ibm.com/support/pages/node/7087149 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2023-38727 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-38727
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted SQL statement. IBM X-Force ID: 262257. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1 y 11.5 es vulnerable a la denegación de servicio con una declaración SQL especialmente manipulada. ID de IBM X-Force: 262257. • https://exchange.xforce.ibmcloud.com/vulnerabilities/262257 https://security.netapp.com/advisory/ntap-20240119-0001 https://www.ibm.com/support/pages/node/7087143 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2023-47701 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-47701
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query. IBM X-Force ID: 266166. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1 y 11.5 es vulnerable a la denegación de servicio con una consulta especialmente manipulada. ID de IBM X-Force: 266166. • https://exchange.xforce.ibmcloud.com/vulnerabilities/266166 https://security.netapp.com/advisory/ntap-20240119-0001 https://www.ibm.com/support/pages/node/7087180 • CWE-20: Improper Input Validation •
CVSS: 7.2EPSS: 0%CPEs: 9EXPL: 0CVE-2023-38003 – IBM Db2 command execution
https://notcve.org/view.php?id=CVE-2023-38003
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 could allow a user with DATAACCESS privileges to execute routines that they should not have access to. IBM X-Force ID: 260214. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1 y 11.5 podría permitir a un usuario con privilegios DATAACCESS ejecutar rutinas a las que no debería tener acceso. ID de IBM X-Force: 260214. • https://exchange.xforce.ibmcloud.com/vulnerabilities/260214 https://security.netapp.com/advisory/ntap-20240119-0001 https://www.ibm.com/support/pages/node/7078681 •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-46167 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-46167
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 federated server is vulnerable to a denial of service when a specially crafted cursor is used. IBM X-Force ID: 269367. El servidor federado IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 11.5 es vulnerable a una denegación de servicio cuando se utiliza un cursor especialmente manipulado. ID de IBM X-Force: 269367. • https://exchange.xforce.ibmcloud.com/vulnerabilities/269367 https://security.netapp.com/advisory/ntap-20240112-0003 https://www.ibm.com/support/pages/node/7087203 • CWE-20: Improper Input Validation •