Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm db2 vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2008-3853
Buffer overflow in the DAS server program in the Core DAS function component in IBM DB2 9.1 before FP4a and 9.5 before FP1 allows remote malicious users to execute arbitrary code or cause a denial of service (daemon crash) via unspecified vectors. NOTE: this might be related to C...
Ibm Db2 Universal Database 9.1
9.3
CVSSv2
CVE-2007-6053
IBM DB2 UDB 9.1 before Fixpak 4 does not properly handle use of large numbers of file descriptors, which might allow malicious users to have an unknown impact involving "memory corruption." NOTE: the vendor description of this issue is too vague to be certain that it is...
Ibm Db2 Universal Database
9.3
CVSSv2
CVE-2005-4867
Stack-based buffer overflow in the SATENCRYPT function in IBM DB2 8.1, when Satellite Administration (SATADMIN) is enabled, allows remote malicious users to execute arbitrary code via a long parameter.
Ibm Db2 Universal Database 7.0
Ibm Db2 Universal Database 7.2
Ibm Db2 Universal Database 8.0
Ibm Db2 Universal Database 8.1
Ibm Db2 Universal Database 7.1
9
CVSSv2
CVE-2012-3324
Directory traversal vulnerability in the UTL_FILE module in IBM DB2 and DB2 Connect 10.1 before FP1 on Windows allows remote authenticated users to modify, delete, or read arbitrary files via a pathname in the file field.
Ibm Db2 Connect 10.1
Ibm Db2
9
CVSSv2
CVE-2008-1997
Unspecified vulnerability in the ADMIN_SP_C2 procedure in IBM DB2 8 before FP16, 9.1 before FP4a, and 9.5 before FP1 allows remote authenticated users to execute arbitrary code via unknown vectors. NOTE: the ADMIN_SP_C issue is already covered by CVE-2008-0699.
Ibm Db2 9.1
Ibm Db2 9.5
Ibm Db2 8.0
9
CVSSv2
CVE-2008-0699
Unspecified vulnerability in the ADMIN_SP_C procedure (SYSPROC.ADMIN_SP_C) in IBM DB2 UDB prior to 8.2 Fixpak 16, 9.1 before FP4a, and 9.5 before FP1 allows remote authenticated users to execute arbitrary code via unspecified attack vectors.
Ibm Db2 8.2
Ibm Db2 9.1
Ibm Db2 9.5
8.5
CVSSv2
CVE-2014-3094
Stack-based buffer overflow in IBM DB2 9.7 through FP9a, 9.8 through FP5, 10.1 through FP4, and 10.5 before FP4 on Linux, UNIX, and Windows allows remote authenticated users to execute arbitrary code via a crafted ALTER MODULE statement.
Ibm Db2 9.7.0.5
Ibm Db2 9.7.0.4
Ibm Db2 9.8.0.4
Ibm Db2 9.8.0.5
Ibm Db2 10.5.0.2
Ibm Db2 10.5.0.3
Ibm Db2 9.7.0.9
Ibm Db2 9.7.0.3
Ibm Db2 9.7.0.2
Ibm Db2 10.1
Ibm Db2 10.1.0.1
Ibm Db2 9.7.0.7
Ibm Db2 9.7.0.6
Ibm Db2 9.8
Ibm Db2 9.8.0.3
Ibm Db2 10.1.0.4
Ibm Db2 10.5.0.1
Ibm Db2 10.5
Ibm Db2 9.7.0.8
Ibm Db2 9.7.0.1
Ibm Db2 9.7
Ibm Db2 10.1.0.2
8.5
CVSSv2
CVE-2013-6744
The Stored Procedure infrastructure in IBM DB2 9.5, 9.7 before FP9a, 10.1 before FP3a, and 10.5 before FP3a on Windows allows remote authenticated users to gain privileges by leveraging the CONNECT privilege and the CREATE_EXTERNAL_ROUTINE authority.
Ibm Db2 10.5.0.2
Ibm Db2 10.5.0.1
Ibm Db2 9.7.0.8
Ibm Db2 9.7.0.7
Ibm Db2 9.5
Ibm Db2 10.1.0.2
Ibm Db2 10.1.0.1
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.3
Ibm Db2 9.7.0.2
Ibm Db2 10.1
Ibm Db2 9.7.0.9
Ibm Db2 9.7.0.1
Ibm Db2 9.7
Ibm Db2 10.5
Ibm Db2 10.1.0.3
Ibm Db2 9.7.0.6
Ibm Db2 9.7.0.5
8.5
CVSSv2
CVE-2012-4826
Stack-based buffer overflow in the SQL/PSM (aka SQL Persistent Stored Module) Stored Procedure (SP) infrastructure in IBM DB2 9.1, 9.5, 9.7 before FP7, 9.8, and 10.1 might allow remote authenticated users to execute arbitrary code by debugging a stored procedure.
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.3
Ibm Db2 9.1
Ibm Db2 9.5
Ibm Db2 9.7
Ibm Db2 9.8
Ibm Db2 10.1
Ibm Db2 9.7.0.6
Ibm Db2 9.7.0.5
Ibm Db2 9.7.0.2
Ibm Db2 9.7.0.1
8.5
CVSSv2
CVE-2008-1998
The NNSTAT (aka SYSPROC.NNSTAT) procedure in IBM DB2 8 before FP16, 9.1 before FP4a, and 9.5 before FP1 on Windows allows remote authenticated users to overwrite arbitrary files via the log file parameter.
Ibm Db2 8.0
Ibm Db2 9.5
Ibm Db2 9.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »