CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-40679 – IBM Db2 information disclosure
https://notcve.org/view.php?id=CVE-2024-40679
08 Jan 2025 — IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 is vulnerable to an information disclosure vulnerability as sensitive information may be included in a log file under specific conditions. • https://www.ibm.com/support/pages/node/7175957 • CWE-532: Insertion of Sensitive Information into Log File •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-30443 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-30443
19 Dec 2024 — IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1 y 11.5 es vulnerable a la denegación de servicio con una consulta especialmente manipulada. • https://www.ibm.com/support/pages/node/7010557 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-41762 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2024-41762
07 Dec 2024 — IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query. • https://www.ibm.com/support/pages/node/7175946 • CWE-789: Memory Allocation with Excessive Size Value •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-37071 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2024-37071
07 Dec 2024 — IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 could allow an authenticated user to cause a denial of service with a specially crafted query due to improper memory allocation. • https://www.ibm.com/support/pages/node/7175940 • CWE-789: Memory Allocation with Excessive Size Value •
CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0CVE-2024-35160 – IBM Watson Query on Cloud Pak for Data and IBM Db2 Big SQL on Cloud Pak for Data information disclosure
https://notcve.org/view.php?id=CVE-2024-35160
23 Nov 2024 — IBM Watson Query on Cloud Pak for Data 1.8, 2.0, 2.1, 2.2 and IBM Db2 Big SQL on Cloud Pak for Data 7.3, 7.4, 7.5, and 7.6 could allow an authenticated user to obtain sensitive information due to insufficient session expiration. IBM Watson Query on Cloud Pak for Data 1.8, 2.0, 2.1, 2.2 and IBM Db2 Big SQL on Cloud Pak for Data 7.3, 7.4, 7.5, and 7.6 could allow an authenticated user to obtain sensitive information due to insufficient session expiration. • https://www.ibm.com/support/pages/node/7168703 • CWE-613: Insufficient Session Expiration •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-41761 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2024-41761
23 Nov 2024 — IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query. • https://www.ibm.com/support/pages/node/7175947 • CWE-789: Memory Allocation with Excessive Size Value •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-45663 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2024-45663
21 Nov 2024 — IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1, 11.5, and 12.1 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query. IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query. • https://www.ibm.com/support/pages/node/7175943 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-31880 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2024-31880
23 Oct 2024 — IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service, under specific configurations, as the server may crash when using a specially crafted SQL statement by an authenticated user. • https://www.ibm.com/support/pages/node/7156851 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-31882 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2024-31882
14 Aug 2024 — IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial of service, under specific configurations, as the server may crash when using a specially crafted SQL statement by an authenticated user. IBM X-Force ID: 287614. IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to a denial of service, under specific non default configurations, as the server may crash when using a specially crafted SQL statement by an authenti... • https://exchange.xforce.ibmcloud.com/vulnerabilities/287614 • CWE-943: Improper Neutralization of Special Elements in Data Query Logic •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-37529 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2024-37529
14 Aug 2024 — IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 could allow an authenticated user to cause a denial of service with a specially crafted query due to improper memory allocation. IBM X-Force ID: 294295. • https://exchange.xforce.ibmcloud.com/vulnerabilities/292639 • CWE-789: Memory Allocation with Excessive Size Value •