CVE-2024-35152 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2024-35152
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 could allow an authenticated user to cause a denial of service with a specially crafted query due to improper memory allocation. IBM X-Force ID: 292639. • https://exchange.xforce.ibmcloud.com/vulnerabilities/292639 https://www.ibm.com/support/pages/node/7165342 • CWE-789: Memory Allocation with Excessive Size Value •
CVE-2024-22360 – IBM Db2 for Linux, UNIX and Windows denial of service
https://notcve.org/view.php?id=CVE-2024-22360
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 is vulnerable to a denial of service with a specially crafted query on certain columnar tables. IBM X-Force ID: 280905. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 11.5 es vulnerable a una denegación de servicio con una consulta especialmente manipulada en determinadas tablas de columnas. ID de IBM X-Force: 280905. • https://https://exchange.xforce.ibmcloud.com/vulnerabilities/280905 https://security.netapp.com/advisory/ntap-20240517-0003 https://www.ibm.com/support/pages/node/7145730 • CWE-20: Improper Input Validation •
CVE-2023-52296 – IBM Db2 for Linux, UNIX and Windows denial of service
https://notcve.org/view.php?id=CVE-2023-52296
IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 is vulnerable to denial of service when querying a specific UDF built-in function concurrently. IBM X-Force ID: 278547. IBM DB2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 11.5 es vulnerable a la denegación de servicio cuando se consulta una función integrada UDF específica de forma simultánea. ID de IBM X-Force: 278547. • https://https://exchange.xforce.ibmcloud.com/vulnerabilities/278547 https://security.netapp.com/advisory/ntap-20240517-0003 https://www.ibm.com/support/pages/node/7145722 • CWE-20: Improper Input Validation •
CVE-2024-25030
https://notcve.org/view.php?id=CVE-2024-25030
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 281677. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 11.1 almacena información potencialmente confidencial en archivos de registro que un usuario local podría leer. ID de IBM X-Force: 281677. • https://https://exchange.xforce.ibmcloud.com/vulnerabilities/281677 https://security.netapp.com/advisory/ntap-20240517-0006 https://www.ibm.com/support/pages/node/7145725 • CWE-532: Insertion of Sensitive Information into Log File •
CVE-2023-47141 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-47141
IIBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 could allow an authenticated user with CONNECT privileges to cause a denial of service using a specially crafted query. IBM X-Force ID: 270264. IIBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 11.5 podría permitir que un usuario autenticado con privilegios CONNECT provoque una denegación de servicio mediante una consulta especialmente manipulada. ID de IBM X-Force: 270264. • https://exchange.xforce.ibmcloud.com/vulnerabilities/270264 https://security.netapp.com/advisory/ntap-20240307-0001 https://www.ibm.com/support/pages/node/7105497 • CWE-20: Improper Input Validation •