CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2023-40692 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-40692
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, 11.5 is vulnerable to denial of service under extreme stress conditions. IBM X-Force ID: 264807. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1, 11.5 es vulnerable a la denegación de servicio en condiciones de estrés extremo. ID de IBM X-Force: 264807. • https://exchange.xforce.ibmcloud.com/vulnerabilities/264807 https://security.netapp.com/advisory/ntap-20240119-0001 https://www.ibm.com/support/pages/node/7087157 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.5EPSS: 0%CPEs: 23EXPL: 0CVE-2023-40373 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-40373
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) is vulnerable to denial of service with a specially crafted query containing common table expressions. IBM X-Force ID: 263574. IBM Db2 para Linux, UNIX y Windows (incluyendo Db2 Connect Server) es vulnerable a la Denegación de Servicio con una consulta especialmente manipulada que contiene expresiones de tabla comunes. ID de IBM X-Force: 263574. • https://exchange.xforce.ibmcloud.com/vulnerabilities/263574 https://security.netapp.com/advisory/ntap-20231116-0006 https://www.ibm.com/support/pages/node/7047563 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 23EXPL: 0CVE-2023-38728 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-38728
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted XML query statement. IBM X-Force ID: 262258. IBM Db2 para Linux, UNIX y Windows (incluyendo Db2 Connect Server) 10.5, 11.1 y 11.5 es vulnerable a la Denegación de Servicio con una declaración de consulta XML especialmente manipulada. ID de IBM X-Force: 262258. • https://exchange.xforce.ibmcloud.com/vulnerabilities/262258 https://security.netapp.com/advisory/ntap-20231116-0006 https://www.ibm.com/support/pages/node/7047478 https://www.ibm.com/support/pages/node/7047489 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 22EXPL: 0CVE-2023-30987 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-30987
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain databases. IBM X-Force ID: 253440. IBM Db2 para Linux, UNIX y Windows (incluyendo Db2 Connect Server) 10.5, 11.1 y 11.5 es vulnerable a la Denegación de Servicio con una consulta especialmente manipulada en determinadas bases de datos. ID de IBM X-Force: 253440. • https://exchange.xforce.ibmcloud.com/vulnerabilities/253440 https://security.netapp.com/advisory/ntap-20231116-0006 https://www.ibm.com/support/pages/node/7047560 • CWE-20: Improper Input Validation •
CVSS: 8.4EPSS: 0%CPEs: 8EXPL: 0CVE-2023-30431 – IBM Db2 buffer overflow
https://notcve.org/view.php?id=CVE-2023-30431
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 db2set is vulnerable to a buffer overflow, caused by improper bounds checking. An attacker could overflow the buffer and execute arbitrary code. IBM X-Force ID: 252184. • https://exchange.xforce.ibmcloud.com/vulnerabilities/252184 https://security.netapp.com/advisory/ntap-20230731-0007 https://www.ibm.com/support/pages/node/7010565 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •