NotCVE - vendor:"Ibm" product:"Db2" version:"9.5"

76 results (0.012 seconds)

CVSS: 6.8EPSS: 0%CPEs: 5EXPL: 0

CVE-2023-47141 – IBM Db2 denial of service

https://notcve.org/view.php?id=CVE-2023-47141

22 Jan 2024 — IIBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 could allow an authenticated user with CONNECT privileges to cause a denial of service using a specially crafted query. IBM X-Force ID: 270264. IIBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 11.5 podría permitir que un usuario autenticado con privilegios CONNECT provoque una denegación de servicio mediante una consulta especialmente manipulada. ID de IBM X-Force: 270264. • https://exchange.xforce.ibmcloud.com/vulnerabilities/270264 • CWE-20: Improper Input Validation •

CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0

CVE-2023-47152 – IBM Db2 information disclosure

https://notcve.org/view.php?id=CVE-2023-47152

22 Jan 2024 — IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 is vulnerable to an insecure cryptographic algorithm and to information disclosure in stack trace under exceptional conditions. IBM X-Force ID: 270730. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 11.5 es vulnerable a un algoritmo criptográfico inseguro y a la divulgación de información en el seguimiento de la pila en condiciones excepcionales. ID de IBM X-Force: 270730. IBM Db2 for Linux, UNIX and Windows (includes Db... • https://exchange.xforce.ibmcloud.com/vulnerabilities/270730 • CWE-209: Generation of Error Message Containing Sensitive Information •

CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0

CVE-2023-45193 – IBM Db2 denial of service

https://notcve.org/view.php?id=CVE-2023-45193

22 Jan 2024 — IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 federated server is vulnerable to a denial of service when a specially crafted cursor is used. IBM X-Force ID: 268759. El servidor federado IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 11.5 es vulnerable a una denegación de servicio cuando se utiliza un cursor especialmente manipulado. ID de IBM X-Force: 268759. • https://exchange.xforce.ibmcloud.com/vulnerabilities/268759 • CWE-20: Improper Input Validation •

CVSS: 6.8EPSS: 0%CPEs: 5EXPL: 0

CVE-2023-50308 – IBM Db2 denial of service

https://notcve.org/view.php?id=CVE-2023-50308

22 Jan 2024 — IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5 under certain circumstances could allow an authenticated user to the database to cause a denial of service when a statement is run on columnar tables. IBM X-Force ID: 273393. IBM Db2 para Linux, UNIX y Windows (incluye DB2 Connect Server) 11.5 bajo ciertas circunstancias podría permitir que un usuario autenticado en la base de datos provoque una denegación de servicio cuando se ejecuta una declaración en tablas de columnas. ID de IBM X-F... • https://exchange.xforce.ibmcloud.com/vulnerabilities/273393 • CWE-20: Improper Input Validation •

CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0

CVE-2023-40687 – IBM Db2 denial of service

https://notcve.org/view.php?id=CVE-2023-40687

04 Dec 2023 — IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted RUNSTATS command on an 8TB table. IBM X-Force ID: 264809. IBM DB2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1 y 11.5 es vulnerable a la denegación de servicio con un comando RUNSTATS especialmente manipulado en una tabla de 8 TB. ID de IBM X-Force: 264809. • https://exchange.xforce.ibmcloud.com/vulnerabilities/264809 • CWE-20: Improper Input Validation •

CVSS: 6.5EPSS: 0%CPEs: 25EXPL: 0

CVE-2014-0919

https://notcve.org/view.php?id=CVE-2014-0919

08 May 2015 — IBM DB2 9.5 through 10.5 on Linux, UNIX, and Windows stores passwords during the processing of certain SQL statements by the monitoring and audit facilities, which allows remote authenticated users to obtain sensitive information via commands associated with these facilities. IBM DB2 9.5 hasta 10.5 en Linux, UNIX, y Windows almacena contraseñas durante el procesamiento de ciertas declaraciones SQL mediante las instalaciones de monitorización y auditoria, lo que permite a usuarios remotos autenticados obtene... • http://www-01.ibm.com/support/docview.wss?uid=swg1IT07397 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 6.5EPSS: 1%CPEs: 5EXPL: 0

CVE-2014-8901

https://notcve.org/view.php?id=CVE-2014-8901

18 Dec 2014 — IBM DB2 9.5 through FP10, 9.7 through FP10, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP5 allows remote authenticated users to cause a denial of service (CPU consumption) via a crafted XML query. IBM DB2 9.5 hasta FP10, 9.7 hasta FP10, 9.8 hasta FP5, 10.1 hasta FP4 y 10.5 anterior a FP5 permiten a usuarios remotos autenticados provocar una denegación de servicio (consumo de CPU) a través de una petición XML manipulada. • http://www-01.ibm.com/support/docview.wss?uid=swg1IT05933 • CWE-399: Resource Management Errors •

CVSS: 6.5EPSS: 17%CPEs: 4EXPL: 0

CVE-2014-6209

https://notcve.org/view.php?id=CVE-2014-6209

12 Dec 2014 — IBM DB2 9.5 through FP10, 9.7 through FP10, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP5 on Linux, UNIX, and Windows allows remote authenticated users to cause a denial of service (daemon crash) by specifying an identity column within a crafted ALTER TABLE statement. IBM DB2 9.5 hasta FP10, 9.7 hasta FP10, 9.8 hasta FP5, 10.1 hasta FP4, y 10.5 anterior a FP5 en Linux, UNIX, y Windows permite a usuarios remotos autenticados causar una denegación de servicio (caída del demonio) mediante la especific... • http://secunia.com/advisories/62092 • CWE-20: Improper Input Validation •

CVSS: 6.5EPSS: 4%CPEs: 43EXPL: 0

CVE-2014-3095

https://notcve.org/view.php?id=CVE-2014-3095

04 Sep 2014 — The SQL engine in IBM DB2 9.5 through FP10, 9.7 through FP9a, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP4 on Linux, UNIX, and Windows allows remote authenticated users to cause a denial of service (daemon crash) via a crafted UNION clause in a subquery of a SELECT statement. El motor SQL en IBM DB2 9.5 hasta FP10, 9.7 hasta FP9a, 9.8 hasta FP5, 10.1 hasta FP4, y 10.5 anterior a FP4 en Linux, UNIX y Windows permite a usuarios remotos autenticados causar una denegación de servicio (caída del demoni... • http://secunia.com/advisories/58725 • CWE-20: Improper Input Validation •

CVSS: 7.8EPSS: 0%CPEs: 18EXPL: 0

CVE-2014-0907 – IBM DB2 Privilege Escalation

https://notcve.org/view.php?id=CVE-2014-0907

30 May 2014 — Multiple untrusted search path vulnerabilities in unspecified (1) setuid and (2) setgid programs in IBM DB2 9.5, 9.7 before FP9a, 9.8, 10.1 before FP3a, and 10.5 before FP3a on Linux and UNIX allow local users to gain root privileges via a Trojan horse library. Múltiples vulnerabilidades de búsqueda de ruta no confiable en programas no especificados (1) setuid y (2) setgid en IBM DB2 9.5, 9.7 anterior a FP9a, 9.8, 10.1 anterior a FP3a y 10.5 anterior a FP3a en Linux y UNIX permiten a usuarios locales ganar ... • http://packetstormsecurity.com/files/126940/IBM-DB2-Privilege-Escalation.html •

1 2 3 4 5