CVE-2024-1150 – Improper validation of update packages
https://notcve.org/view.php?id=CVE-2024-1150
Improper Verification of Cryptographic Signature vulnerability in Snow Software Inventory Agent on Unix allows File Manipulation through Snow Update Packages.This issue affects Inventory Agent: through 7.3.1. La verificación incorrecta de la vulnerabilidad de la firma criptográfica en Snow Software Inventory Agent en Unix permite la manipulación de archivos a través de los paquetes de actualización de Snow. Este problema afecta al Inventory Agent: hasta 7.3.1. • https://community.snowsoftware.com/s/feed/0D5Td000004YtMcKAK • CWE-347: Improper Verification of Cryptographic Signature •
CVE-2023-29258 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-29258
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1, and 11.5 is vulnerable to a denial of service through a specially crafted federated query on specific federation objects. IBM X-Force ID: 252048. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 11.1 y 11.5 es vulnerable a una denegación de servicio a través de una consulta federada especialmente manipulada en objetos de federación específicos. ID de IBM X-Force: 252048. • https://exchange.xforce.ibmcloud.com/vulnerabilities/252048 https://security.netapp.com/advisory/ntap-20240112-0002 https://www.ibm.com/support/pages/node/7087218 • CWE-20: Improper Input Validation •
CVE-2023-40687 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-40687
IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted RUNSTATS command on an 8TB table. IBM X-Force ID: 264809. IBM DB2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1 y 11.5 es vulnerable a la denegación de servicio con un comando RUNSTATS especialmente manipulado en una tabla de 8 TB. ID de IBM X-Force: 264809. • https://exchange.xforce.ibmcloud.com/vulnerabilities/264809 https://security.netapp.com/advisory/ntap-20240119-0001 https://www.ibm.com/support/pages/node/7087149 • CWE-20: Improper Input Validation •
CVE-2023-38727 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-38727
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted SQL statement. IBM X-Force ID: 262257. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1 y 11.5 es vulnerable a la denegación de servicio con una declaración SQL especialmente manipulada. ID de IBM X-Force: 262257. • https://exchange.xforce.ibmcloud.com/vulnerabilities/262257 https://security.netapp.com/advisory/ntap-20240119-0001 https://www.ibm.com/support/pages/node/7087143 • CWE-20: Improper Input Validation •
CVE-2023-47701 – IBM Db2 denial of service
https://notcve.org/view.php?id=CVE-2023-47701
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query. IBM X-Force ID: 266166. IBM Db2 para Linux, UNIX y Windows (incluye Db2 Connect Server) 10.5, 11.1 y 11.5 es vulnerable a la denegación de servicio con una consulta especialmente manipulada. ID de IBM X-Force: 266166. • https://exchange.xforce.ibmcloud.com/vulnerabilities/266166 https://security.netapp.com/advisory/ntap-20240119-0001 https://www.ibm.com/support/pages/node/7087180 • CWE-20: Improper Input Validation •