Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
db2 vulnerabilities and exploits
(subscribe to this query)
694
VMScore
CVE-2007-5652
IBM DB2 UDB 9.1 before Fixpak 4 does not properly manage storage of a list containing authentication information, which might allow malicious users to cause a denial of service (instance crash) or trigger memory corruption. NOTE: the vendor description of this issue is too vague ...
Ibm Db2 9.1
Ibm Db2
668
VMScore
CVE-2017-11614
MEDHOST Connex contains hard-coded credentials that are used for customer database access. An attacker with knowledge of the hard-coded credentials and the ability to communicate directly with the database may be able to obtain or modify sensitive patient and financial informatio...
Medhost Connex -
668
VMScore
CVE-2012-0711
Integer signedness error in the db2dasrrm process in the DB2 Administration Server (DAS) in IBM DB2 9.1 through FP11, 9.5 before FP9, and 9.7 through FP5 on UNIX platforms allows remote malicious users to execute arbitrary code via a crafted request that triggers a heap-based buf...
Ibm Db2 9.1
Ibm Db2 9.5
Ibm Db2 9.7
668
VMScore
CVE-2011-0731
Buffer overflow in the DB2 Administration Server (DAS) component in IBM DB2 9.1 before FP10, 9.5 before FP7, and 9.7 before FP3 on Linux, UNIX, and Windows allows remote malicious users to execute arbitrary code via unspecified vectors.
Ibm Db2 9.1
Ibm Db2
Ibm Db2 9.5
Ibm Db2 9.7
668
VMScore
CVE-2010-3194
The DB2DART program in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 allows malicious users to bypass intended file access restrictions via unspecified vectors related to overwriting files owned by an instance owner.
Ibm Db2 9.1
Ibm Db2 9.5
Ibm Db2 9.7
668
VMScore
CVE-2009-4333
The Relational Data Services component in IBM DB2 9.5 before FP5 allows malicious users to obtain the password argument from the SET ENCRYPTION PASSWORD statement via vectors involving the GET SNAPSHOT FOR DYNAMIC SQL command.
Ibm Db2 9.5
668
VMScore
CVE-2009-3471
IBM DB2 8 before FP18, 9.1 before FP8, 9.5 before FP4, and 9.7 before FP2 does not perform the expected drops of certain table functions upon a loss of privileges by the functions' definers, which has unspecified impact and remote attack vectors.
Ibm Db2 8.0
Ibm Db2 9.1
Ibm Db2 9.5
668
VMScore
CVE-2008-3958
IBM DB2 UDB 8 before Fixpak 17 allows remote malicious users to cause a denial of service (instance crash) via a crafted CONNECT/ATTACH data stream that simulates a V7 client connect/attach request. NOTE: this may overlap CVE-2008-3858. NOTE: this issue exists because of an incom...
Ibm Db2 8.0
Ibm Db2
668
VMScore
CVE-2008-3856
The routine infrastructure component in IBM DB2 8 before FP17, 9.1 before FP5, and 9.5 before FP1 on Unix and Linux does not change the ownership of the db2fmp process, which has unknown impact and attack vectors.
Ibm Db2 Universal Database 8
Ibm Db2 Universal Database
Ibm Db2 Universal Database 9.1
Ibm Db2 Universal Database 8.0
668
VMScore
CVE-2008-0696
IBM DB2 UDB prior to 8.2 Fixpak 16 does not properly check authorization for the ALTER TABLE statement, which has unknown impact and attack vectors.
Ibm Db2 8.2 Fixpack15
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »