Vulnerabilities > IBM
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-17 | CVE-2022-22377 | Missing Encryption of Sensitive Data vulnerability in IBM Security Verify Privilege On-Premises IBM Security Verify Privilege On-Premises 11.5 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. | 5.3 |
| 2023-10-17 | CVE-2022-22384 | Improper Input Validation vulnerability in IBM Security Verify Privilege On-Premises IBM Security Verify Privilege On-Premises 11.5 could allow an attacker to modify messages returned from the server due to hazardous input validation. | 4.3 |
| 2023-10-17 | CVE-2023-38719 | Unspecified vulnerability in IBM DB2 11.5.8 IBM Db2 11.5 could allow a local user with special privileges to cause a denial of service during database deactivation on DPF. | 4.4 |
| 2023-10-17 | CVE-2023-40372 | Unspecified vulnerability in IBM DB2 11.5/11.5.5.0/11.5.6 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 is vulnerable to denial of service with a specially crafted SQL statement using External Tables. | 7.5 |
| 2023-10-17 | CVE-2023-40373 | Unspecified vulnerability in IBM DB2 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) is vulnerable to denial of service with a specially crafted query containing common table expressions. | 7.5 |
| 2023-10-16 | CVE-2023-30991 | Unspecified vulnerability in IBM DB2 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 is vulnerable to denial of service with a specially crafted query. | 7.5 |
| 2023-10-16 | CVE-2023-40374 | Unspecified vulnerability in IBM DB2 11.5/11.5.5.0/11.5.6 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 is vulnerable to denial of service with a specially crafted query statement. | 7.5 |
| 2023-10-16 | CVE-2023-38728 | Unspecified vulnerability in IBM DB2 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted XML query statement. | 7.5 |
| 2023-10-16 | CVE-2023-38740 | Unspecified vulnerability in IBM DB2 11.5/11.5.5.0/11.5.6 IBM Db2 for Linux, UNIX, and Windows (includes Db2 Connect Server) 11.5 is vulnerable to a denial of service with a specially crafted SQL statement. | 7.5 |
| 2023-10-16 | CVE-2023-30987 | Unspecified vulnerability in IBM DB2 IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain databases. | 7.5 |