Vulnerabilities > IBM > DB2 > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-03 CVE-2023-45178 Unspecified vulnerability in IBM DB2 11.5
IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5 CLI is vulnerable to a denial of service when a specially crafted request is used.
network
low complexity
ibm
7.5
2023-10-17 CVE-2023-40372 Unspecified vulnerability in IBM DB2 11.5/11.5.5.0/11.5.6
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 is vulnerable to denial of service with a specially crafted SQL statement using External Tables.
network
low complexity
ibm
7.5
2023-10-17 CVE-2023-40373 Unspecified vulnerability in IBM DB2
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) is vulnerable to denial of service with a specially crafted query containing common table expressions.
network
low complexity
ibm
7.5
2023-10-16 CVE-2023-30991 Unspecified vulnerability in IBM DB2
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to denial of service with a specially crafted query.
network
low complexity
ibm
7.5
2023-10-16 CVE-2023-40374 Unspecified vulnerability in IBM DB2 11.5/11.5.5.0/11.5.6
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 is vulnerable to denial of service with a specially crafted query statement.
network
low complexity
ibm
7.5
2023-10-16 CVE-2023-38728 Unspecified vulnerability in IBM DB2
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted XML query statement.
network
low complexity
ibm
7.5
2023-10-16 CVE-2023-38740 Unspecified vulnerability in IBM DB2 11.5/11.5.5.0/11.5.6
IBM Db2 for Linux, UNIX, and Windows (includes Db2 Connect Server) 11.5 is vulnerable to a denial of service with a specially crafted SQL statement.
network
low complexity
ibm
7.5
2023-10-16 CVE-2023-30987 Unspecified vulnerability in IBM DB2
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain databases.
network
low complexity
ibm
7.5
2023-10-16 CVE-2023-38720 Unspecified vulnerability in IBM DB2
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 and 11.5 is vulnerable to denial of service with a specially crafted ALTER TABLE statement.
network
low complexity
ibm
7.5
2023-07-10 CVE-2023-27558 Improper Privilege Management vulnerability in IBM DB2 10.5.0.11/11.1.4.7/11.5
IBM Db2 on Windows 10.5, 11.1, and 11.5 may be vulnerable to a privilege escalation caused by at least one installed service using an unquoted service path.
local
low complexity
ibm CWE-269
7.8