CVE-2023-29258 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-29258
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1, and 11.5 is vulnerable to a denial of service through a specially crafted federated query on specific federation objects. IBM X-Force ID: 252048. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 11.1 y 11.5 es vulnerable a una denegación de servicio a través de una consulta federada especialmente manipulada en objetos de federación específicos. ID de IBM X-Force: 252048. • https://exchange.xforce.ibmcloud.com/vulnerabilities/252048 https://security.netapp.com/advisory/ntap-20240112-0002 https://www.ibm.com/support/pages/node/7087218 • CWE-20: Improper Input Validation •
CVE-2023-40687 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-40687
IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted RUNSTATS command on an 8TB table. IBM X-Force ID: 264809. IBM DB2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1 y 11.5 es vulnerable a la denegación de servicio con un comando RUNSTATS especialmente manipulado en una tabla de 8 TB. ID de IBM X-Force: 264809. • https://exchange.xforce.ibmcloud.com/vulnerabilities/264809 https://security.netapp.com/advisory/ntap-20240119-0001 https://www.ibm.com/support/pages/node/7087149 • CWE-20: Improper Input Validation •
CVE-2023-38727 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-38727
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted SQL statement. IBM X-Force ID: 262257. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1 y 11.5 es vulnerable a la denegación de servicio con una declaración SQL especialmente manipulada. ID de IBM X-Force: 262257. • https://exchange.xforce.ibmcloud.com/vulnerabilities/262257 https://security.netapp.com/advisory/ntap-20240119-0001 https://www.ibm.com/support/pages/node/7087143 • CWE-20: Improper Input Validation •
CVE-2023-47701 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-47701
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query. IBM X-Force ID: 266166. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1 y 11.5 es vulnerable a la denegación de servicio con una consulta especialmente manipulada. ID de IBM X-Force: 266166. • https://exchange.xforce.ibmcloud.com/vulnerabilities/266166 https://security.netapp.com/advisory/ntap-20240119-0001 https://www.ibm.com/support/pages/node/7087180 • CWE-20: Improper Input Validation •
CVE-2023-38003 – IBM Db2 command execution
https://notcve.org/view.php?id=CVE-2023-38003
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 could allow a user with DATAACCESS privileges to execute routines that they should not have access to. IBM X-Force ID: 260214. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1 y 11.5 podría permitir a un usuario con privilegios DATAACCESS ejecutar rutinas a las que no debería tener acceso. ID de IBM X-Force: 260214. • https://exchange.xforce.ibmcloud.com/vulnerabilities/260214 https://security.netapp.com/advisory/ntap-20240119-0001 https://www.ibm.com/support/pages/node/7078681 •