Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm db2 9.5 vulnerabilities and exploits
(subscribe to this query)
8.5
CVSSv2
CVE-2013-6744
The Stored Procedure infrastructure in IBM DB2 9.5, 9.7 before FP9a, 10.1 before FP3a, and 10.5 before FP3a on Windows allows remote authenticated users to gain privileges by leveraging the CONNECT privilege and the CREATE_EXTERNAL_ROUTINE authority.
Ibm Db2 10.5.0.2
Ibm Db2 10.5.0.1
Ibm Db2 9.7.0.8
Ibm Db2 9.7.0.7
Ibm Db2 9.5
Ibm Db2 10.1.0.2
Ibm Db2 10.1.0.1
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.3
Ibm Db2 9.7.0.2
Ibm Db2 10.1
Ibm Db2 9.7.0.9
Ibm Db2 9.7.0.1
Ibm Db2 9.7
Ibm Db2 10.5
Ibm Db2 10.1.0.3
Ibm Db2 9.7.0.6
Ibm Db2 9.7.0.5
8.5
CVSSv2
CVE-2012-4826
Stack-based buffer overflow in the SQL/PSM (aka SQL Persistent Stored Module) Stored Procedure (SP) infrastructure in IBM DB2 9.1, 9.5, 9.7 before FP7, 9.8, and 10.1 might allow remote authenticated users to execute arbitrary code by debugging a stored procedure.
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.3
Ibm Db2 9.1
Ibm Db2 9.5
Ibm Db2 9.7
Ibm Db2 9.8
Ibm Db2 10.1
Ibm Db2 9.7.0.6
Ibm Db2 9.7.0.5
Ibm Db2 9.7.0.2
Ibm Db2 9.7.0.1
8.5
CVSSv2
CVE-2008-1998
The NNSTAT (aka SYSPROC.NNSTAT) procedure in IBM DB2 8 before FP16, 9.1 before FP4a, and 9.5 before FP1 on Windows allows remote authenticated users to overwrite arbitrary files via the log file parameter.
Ibm Db2 8.0
Ibm Db2 9.5
Ibm Db2 9.1
7.8
CVSSv2
CVE-2008-3854
Multiple stack-based buffer overflows in IBM DB2 9.1 before Fixpak 5 and 9.5 before Fixpak 1 allow remote malicious users to cause a denial of service (system outage) via vectors related to (1) use of XQuery to issue statements; the (2) XMLQUERY, (3) XMLEXISTS, and (4) XMLTABLE s...
Ibm Db2 Universal Database 9.1
Ibm Db2 Universal Database 9.5
7.5
CVSSv2
CVE-2012-0711
Integer signedness error in the db2dasrrm process in the DB2 Administration Server (DAS) in IBM DB2 9.1 through FP11, 9.5 before FP9, and 9.7 through FP5 on UNIX platforms allows remote malicious users to execute arbitrary code via a crafted request that triggers a heap-based buf...
Ibm Db2 9.1
Ibm Db2 9.5
Ibm Db2 9.7
7.5
CVSSv2
CVE-2011-0731
Buffer overflow in the DB2 Administration Server (DAS) component in IBM DB2 9.1 before FP10, 9.5 before FP7, and 9.7 before FP3 on Linux, UNIX, and Windows allows remote malicious users to execute arbitrary code via unspecified vectors.
Ibm Db2 9.1
Ibm Db2
Ibm Db2 9.5
Ibm Db2 9.7
7.5
CVSSv2
CVE-2010-3194
The DB2DART program in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 allows malicious users to bypass intended file access restrictions via unspecified vectors related to overwriting files owned by an instance owner.
Ibm Db2 9.1
Ibm Db2 9.5
Ibm Db2 9.7
7.5
CVSSv2
CVE-2009-4333
The Relational Data Services component in IBM DB2 9.5 before FP5 allows malicious users to obtain the password argument from the SET ENCRYPTION PASSWORD statement via vectors involving the GET SNAPSHOT FOR DYNAMIC SQL command.
Ibm Db2 9.5
7.5
CVSSv2
CVE-2009-3471
IBM DB2 8 before FP18, 9.1 before FP8, 9.5 before FP4, and 9.7 before FP2 does not perform the expected drops of certain table functions upon a loss of privileges by the functions' definers, which has unspecified impact and remote attack vectors.
Ibm Db2 8.0
Ibm Db2 9.1
Ibm Db2 9.5
7.5
CVSSv2
CVE-2008-3856
The routine infrastructure component in IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP1 on Unix and Linux does not change the ownership of the db2fmp process, which has unknown impact and attack vectors.
Ibm Db2 Universal Database 9.1
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database
Ibm Db2 Universal Database 8
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »