Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
db2 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2018-1488
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 10.5 and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local malicious user to execute arbitrary code on the system as root. IBM X-Force ID: 140973.
Ibm Db2 10.5
Ibm Db2 11.1
7.2
CVSSv2
CVE-2017-1451
IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user with DB2 instance owner privileges to obtain root access. IBM X-Force ID: 128178.
Ibm Db2 10.1.0.2
Ibm Db2 10.1.0.4
Ibm Db2 Connect 10.1.0.5
Ibm Db2 Connect 10.5.0.1
Ibm Db2 Connect 10.5.0.6
Ibm Db2 10.5
Ibm Db2 10.5.0.2
Ibm Db2 10.5.0.6
Ibm Db2 Connect 9.7
Ibm Db2 Connect 9.7.0.7
Ibm Db2 Connect 9.7.0.9
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.6
Ibm Db2 9.7.0.10
Ibm Db2 11.1.0.0
Ibm Db2 Connect 11.1.0.0
Ibm Db2 10.1
Ibm Db2 10.1.0.1
Ibm Db2 Connect 10.5.0.2
Ibm Db2 Connect 10.5.0.3
Ibm Db2 Connect 10.5.0.4
Ibm Db2 Connect 10.5.0.5
7.2
CVSSv2
CVE-2017-1452
IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user to obtain elevated privilege and overwrite DB2 files. IBM X-Force ID: 128180.
Ibm Db2 Connect 10.1.0.2
Ibm Db2 Connect 10.1.0.3
Ibm Db2 Connect 10.1.0.4
Ibm Db2 Connect 10.1.0.5
Ibm Db2 Connect 10.5
Ibm Db2 10.5.0.4
Ibm Db2 10.5.0.5
Ibm Db2 Connect 11.1.0.0
Ibm Db2 10.1.0.4
Ibm Db2 Connect 10.1
Ibm Db2 Connect 10.5.0.1
Ibm Db2 Connect 10.5.0.3
Ibm Db2 10.5.0.2
Ibm Db2 10.5.0.3
Ibm Db2 Connect 9.7
Ibm Db2 Connect 9.7.0.2
Ibm Db2 Connect 9.7.0.9
Ibm Db2 Connect 9.7.0.11
Ibm Db2 9.7.0.6
Ibm Db2 9.7.0.8
Ibm Db2 10.5.0.6
Ibm Db2 10.5.0.7
7.2
CVSSv2
CVE-2017-1438
IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user with DB2 instance owner privileges to obtain root access. IBM X-Force ID: 128057.
Ibm Db2 Connect 11.1.0.0
Ibm Db2 10.1
Ibm Db2 10.1.0.1
Ibm Db2 10.1.0.2
Ibm Db2 Connect 10.5.0.4
Ibm Db2 Connect 10.5.0.5
Ibm Db2 Connect 10.5.0.6
Ibm Db2 Connect 10.5.0.7
Ibm Db2 Connect 9.7.0.4
Ibm Db2 Connect 9.7.0.5
Ibm Db2 Connect 9.7.0.6
Ibm Db2 Connect 9.7.0.7
Ibm Db2 9.7.0.8
Ibm Db2 9.7.0.9
Ibm Db2 9.7.0.10
Ibm Db2 Connect 10.1.0.1
Ibm Db2 Connect 10.1.0.2
Ibm Db2 Connect 10.1.0.3
Ibm Db2 Connect 10.1.0.4
Ibm Db2 Connect 10.1.0.5
Ibm Db2 10.5.0.3
Ibm Db2 10.5.0.4
7.2
CVSSv2
CVE-2017-1439
IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user with DB2 instance owner privileges to obtain root access. IBM X-Force ID: 128058.
Ibm Db2 Connect 10.1.0.4
Ibm Db2 Connect 10.1.0.5
Ibm Db2 Connect 10.5
Ibm Db2 Connect 10.5.0.1
Ibm Db2 10.5.0.6
Ibm Db2 10.5.0.7
Ibm Db2 Connect 9.7
Ibm Db2 Connect 9.7.0.1
Ibm Db2 9.7.0.2
Ibm Db2 9.7.0.3
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.5
Ibm Db2 9.7.0.6
Ibm Db2 11.1.0.0
Ibm Db2 10.1
Ibm Db2 Connect 10.1.0.1
Ibm Db2 Connect 10.1.0.3
Ibm Db2 Connect 10.5.0.2
Ibm Db2 Connect 10.5.0.4
Ibm Db2 10.5.0.3
Ibm Db2 10.1.0.2
Ibm Db2 10.1.0.3
7.2
CVSSv2
CVE-2014-0907
Multiple untrusted search path vulnerabilities in unspecified (1) setuid and (2) setgid programs in IBM DB2 9.5, 9.7 before FP9a, 9.8, 10.1 before FP3a, and 10.5 before FP3a on Linux and UNIX allow local users to gain root privileges via a Trojan horse library.
Ibm Db2 10.1.0.3
Ibm Db2 10.1.0.2
Ibm Db2 9.7.0.5
Ibm Db2 9.7.0.4
Ibm Db2 9.7.0.9
Ibm Db2 9.7.0.8
Ibm Db2 9.7.0.1
Ibm Db2 9.7
Ibm Db2 10.1.0.1
Ibm Db2 10.1
Ibm Db2 9.7.0.3
Ibm Db2 9.7.0.2
Ibm Db2 10.5.0.2
Ibm Db2 10.5.0.1
Ibm Db2 10.5
Ibm Db2 9.7.0.7
Ibm Db2 9.7.0.6
Ibm Db2 9.5
7.2
CVSSv2
CVE-2013-3475
Stack-based buffer overflow in db2aud in the Audit Facility in IBM DB2 and DB2 Connect 9.1, 9.5, 9.7, 9.8, and 10.1, as used in Smart Analytics System 7600 and other products, allows local users to gain privileges via unspecified vectors.
Ibm Db2 Connect 9.1
Ibm Db2 Connect 9.5
Ibm Db2 9.1
Ibm Db2 Connect 9.7
Ibm Db2 Connect 9.8
Ibm Db2 9.5
Ibm Db2 9.7
Ibm Db2 Connect 10.1
Ibm Db2 9.8
Ibm Db2 10.1
Ibm Smart Analytics System 7600 -
7.2
CVSSv2
CVE-2013-0490
Unspecified vulnerability in IBM InfoSphere Guardium S-TAP 8.1 for DB2 on z/OS allows local users to gain privileges via unknown vectors.
Ibm Infosphere Guardium 8.00
7.2
CVSSv2
CVE-2012-1796
Unspecified vulnerability in IBM Tivoli Monitoring Agent (ITMA), as used in IBM DB2 9.5 before FP9 on UNIX, allows local users to gain privileges via unknown vectors.
Ibm Db2 9.5
7.2
CVSSv2
CVE-2010-3733
The Engine Utilities component in IBM DB2 UDB 9.5 before FP6a uses world-writable permissions for the sqllib/cfg/db2sprf file, which might allow local users to gain privileges by modifying this file.
Ibm Db2 9.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »