Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
db2 vulnerabilities and exploits
(subscribe to this query)
641
VMScore
CVE-2019-4523
IBM DB2 High Performance Unload load for LUW 6.1 and 6.5 is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local malicious user to execute arbitrary code on the system with root privileges. IBM X-Force ID: 165481.
Ibm Db2 High Performance Unload Load 6.1
Ibm Db2 High Performance Unload Load 6.5
641
VMScore
CVE-2019-4447
IBM DB2 High Performance Unload load for LUW 6.1, 6.1.0.1, 6.1.0.1 IF1, 6.1.0.2, 6.1.0.2 IF1, and 6.1.0.1 IF2 db2hpum_debug is a setuid root binary which trusts the PATH environment variable. A low privileged user can execute arbitrary commands as root by altering the PATH variab...
Ibm Db2 High Performance Unload Load 6.1.0.1
Ibm Db2 High Performance Unload Load 6.1.0.2
Ibm Db2 High Performance Unload Load 6.1
641
VMScore
CVE-2019-4448
IBM DB2 High Performance Unload load for LUW 6.1, 6.1.0.1, 6.1.0.1 IF1, 6.1.0.2, 6.1.0.2 IF1, and 6.1.0.1 IF2 db2hpum and db2hpum_debug binaries are setuid root and have built-in options that allow an low privileged user the ability to load arbitrary db2 libraries from a privileg...
Ibm Db2 High Performance Unload Load 6.1.0.1
Ibm Db2 High Performance Unload Load 6.1.0.2
Ibm Db2 High Performance Unload Load 6.1
641
VMScore
CVE-2019-4322
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local malicious user to execute arbitrary code on the system as root. IBM X-Force ID: 161202.
Ibm Db2 9.7
Ibm Db2 10.1
Ibm Db2 10.5
Ibm Db2 11.1
641
VMScore
CVE-2019-4057
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 could allow malicious user with access to the DB2 instance account to leverage a fenced execution process to execute arbitrary code as root. IBM X-Force ID: 156567.
Ibm Db2 9.7.0.10
Ibm Db2 9.7.0.6
Ibm Db2 10.1.0.2
Ibm Db2 9.7.0.3
Ibm Db2 10.5.0.6
Ibm Db2 9.7.0.8
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.11
Ibm Db2 11.1.0.0
Ibm Db2 9.7.0.7
Ibm Db2 10.5.0.7
Ibm Db2 10.5.0.1
Ibm Db2 10.1.0.1
Ibm Db2 9.7.0.1
Ibm Db2 10.1.0.5
Ibm Db2 9.7.0.9
Ibm Db2 10.5.0.5
Ibm Db2 10.5.0.3
Ibm Db2 9.7.0.2
Ibm Db2 10.1.0.3
Ibm Db2 9.7.0.5
Ibm Db2 10.5.0.2
641
VMScore
CVE-2019-4154
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local malicious user to execute arbitrary code on the system as root. IBM X-Force ID: 158519.
Ibm Db2 9.7.0.0
Ibm Db2 9.7.0.1
Ibm Db2 9.7.0.2
Ibm Db2 9.7.0.3
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.5
Ibm Db2 9.7.0.6
Ibm Db2 9.7.0.7
Ibm Db2 9.7.0.8
Ibm Db2 9.7.0.9
Ibm Db2 9.7.0.10
Ibm Db2 9.7.0.11
Ibm Db2 10.1.0.0
Ibm Db2 10.1.0.1
Ibm Db2 10.1.0.2
Ibm Db2 10.1.0.3
Ibm Db2 10.1.0.4
Ibm Db2 10.1.0.5
Ibm Db2 10.1.0.6
Ibm Db2 10.5.0.0
Ibm Db2 10.5.0.1
Ibm Db2 10.5.0.2
641
VMScore
CVE-2019-4357
When using IBM Spectrum Protect Plus 10.1.0, 10.1.2, and 10.1.3 to protect Oracle, DB2 or MongoDB databases, a redirected restore operation specifying a target path may allow execution of arbitrary code on the system. IBM X-Force ID: 161667,
Ibm Spectrum Protect Plus 10.1.1
Ibm Spectrum Protect Plus 10.1.3
Ibm Spectrum Protect Plus 10.1.2
641
VMScore
CVE-2019-4014
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local malicious user to execute arbitrary code on the system as root. IBM X-Force ID: 155892.
Ibm Db2 9.7.0.10
Ibm Db2 9.7.0.6
Ibm Db2 10.1.0.2
Ibm Db2 9.7.0.3
Ibm Db2 10.5.0.6
Ibm Db2 9.7.0.8
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.11
Ibm Db2 11.1.0.0
Ibm Db2 9.7.0.7
Ibm Db2 10.5.0.7
Ibm Db2 10.5.0.1
Ibm Db2 10.1.0.1
Ibm Db2 9.7.0.1
Ibm Db2 10.1.0.5
Ibm Db2 9.7.0.9
Ibm Db2 10.5.0.5
Ibm Db2 10.5.0.3
Ibm Db2 9.7.0.2
Ibm Db2 10.1.0.3
Ibm Db2 9.7.0.5
Ibm Db2 10.5.0.2
641
VMScore
CVE-2018-1936
IBM DB2 9.7, 10.1, 10.5, and 11.1 libdb2e.so.1 is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow an malicious user to execute arbitrary code. IBM X-Force ID: 153316.
Ibm Db2 9.7.0.8
Ibm Db2 9.7.0.9
Ibm Db2 10.1.0.0
Ibm Db2 10.1.0.1
Ibm Db2 10.5.0.7
Ibm Db2 10.5.0.8
Ibm Db2 10.5.0.9
Ibm Db2 11.1.0.0
Ibm Db2 9.7.0.1
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.6
Ibm Db2 10.1.0.3
Ibm Db2 10.1.0.5
Ibm Db2 10.5.0.2
Ibm Db2 10.5.0.4
Ibm Db2 10.5.0.6
Ibm Db2 11.1.1.1
Ibm Db2 11.1.3.3
Ibm Db2 9.7.0.10
Ibm Db2 9.7.0.11
Ibm Db2 9.7.0.2
Ibm Db2 9.7.0.3
641
VMScore
CVE-2019-4094
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 binaries load shared libraries from an untrusted path potentially giving low privilege user full access to root by loading a malicious shared library. IBM X-Force ID: 158014.
Ibm Db2 9.7
Ibm Db2 10.1
Ibm Db2 10.5
Ibm Db2 11.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36920
buffer overflow
CVE-2024-36913
CVE-2024-5497
CVE-2024-23917
CVE-2024-4956
server-side request forgery
CVE-2024-35468
SSTI
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »