Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
db2 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2020-4701
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local malicious user to execute arbitrary code on the system with root privileges.
Ibm Db2 10.5
Ibm Db2 11.1
Ibm Db2 11.5
7.2
CVSSv2
CVE-2020-4363
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local malicious user to execute arbitrary code on the system with root privileges. IBM X-Fo...
Ibm Db2 9.7.0.0
Ibm Db2 10.1.0.0
Ibm Db2 10.5.0.0
Ibm Db2 11.1.0.0
Ibm Db2 11.5.0.0
7.2
CVSSv2
CVE-2020-4204
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local malicious user to execute arbitrary code on the system with root privileges. IBM X-Fo...
Ibm Db2 9.7
Ibm Db2 10.1
Ibm Db2 10.5
Ibm Db2 11.1
Ibm Db2 11.5
7.2
CVSSv2
CVE-2019-4523
IBM DB2 High Performance Unload load for LUW 6.1 and 6.5 is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local malicious user to execute arbitrary code on the system with root privileges. IBM X-Force ID: 165481.
Ibm Db2 High Performance Unload Load 6.1
Ibm Db2 High Performance Unload Load 6.5
7.2
CVSSv2
CVE-2019-4447
IBM DB2 High Performance Unload load for LUW 6.1, 6.1.0.1, 6.1.0.1 IF1, 6.1.0.2, 6.1.0.2 IF1, and 6.1.0.1 IF2 db2hpum_debug is a setuid root binary which trusts the PATH environment variable. A low privileged user can execute arbitrary commands as root by altering the PATH variab...
Ibm Db2 High Performance Unload Load 6.1.0.1
Ibm Db2 High Performance Unload Load 6.1.0.2
Ibm Db2 High Performance Unload Load 6.1
7.2
CVSSv2
CVE-2019-4448
IBM DB2 High Performance Unload load for LUW 6.1, 6.1.0.1, 6.1.0.1 IF1, 6.1.0.2, 6.1.0.2 IF1, and 6.1.0.1 IF2 db2hpum and db2hpum_debug binaries are setuid root and have built-in options that allow an low privileged user the ability to load arbitrary db2 libraries from a privileg...
Ibm Db2 High Performance Unload Load 6.1.0.1
Ibm Db2 High Performance Unload Load 6.1.0.2
Ibm Db2 High Performance Unload Load 6.1
7.2
CVSSv2
CVE-2019-4154
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local malicious user to execute arbitrary code on the system as root. IBM X-Force ID: 158519.
Ibm Db2 9.7.0.0
Ibm Db2 9.7.0.1
Ibm Db2 9.7.0.2
Ibm Db2 9.7.0.3
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.5
Ibm Db2 9.7.0.6
Ibm Db2 9.7.0.7
Ibm Db2 9.7.0.8
Ibm Db2 9.7.0.9
Ibm Db2 9.7.0.10
Ibm Db2 9.7.0.11
Ibm Db2 10.1.0.0
Ibm Db2 10.1.0.1
Ibm Db2 10.1.0.2
Ibm Db2 10.1.0.3
Ibm Db2 10.1.0.4
Ibm Db2 10.1.0.5
Ibm Db2 10.1.0.6
Ibm Db2 10.5.0.0
Ibm Db2 10.5.0.1
Ibm Db2 10.5.0.2
7.2
CVSSv2
CVE-2019-4057
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could allow malicious user with access to the DB2 instance account to leverage a fenced execution process to execute arbitrary code as root. IBM X-Force ID: 156567.
Ibm Db2 9.7.0.10
Ibm Db2 9.7.0.6
Ibm Db2 10.1.0.2
Ibm Db2 9.7.0.3
Ibm Db2 10.5.0.6
Ibm Db2 9.7.0.8
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.11
Ibm Db2 11.1.0.0
Ibm Db2 9.7.0.7
Ibm Db2 10.5.0.7
Ibm Db2 10.5.0.1
Ibm Db2 10.1.0.1
Ibm Db2 9.7.0.1
Ibm Db2 10.1.0.5
Ibm Db2 9.7.0.9
Ibm Db2 10.5.0.5
Ibm Db2 10.5.0.3
Ibm Db2 9.7.0.2
Ibm Db2 10.1.0.3
Ibm Db2 9.7.0.5
Ibm Db2 10.5.0.2
7.2
CVSSv2
CVE-2019-4322
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local malicious user to execute arbitrary code on the system as root. IBM X-Force ID: 161202.
Ibm Db2 9.7
Ibm Db2 10.1
Ibm Db2 10.5
Ibm Db2 11.1
7.2
CVSSv2
CVE-2019-4357
When using IBM Spectrum Protect Plus 10.1.0, 10.1.2, and 10.1.3 to protect Oracle, DB2 or MongoDB databases, a redirected restore operation specifying a target path may allow execution of arbitrary code on the system. IBM X-Force ID: 161667,
Ibm Spectrum Protect Plus 10.1.1
Ibm Spectrum Protect Plus 10.1.3
Ibm Spectrum Protect Plus 10.1.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »