What the vulnerability does
01Description
IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: 253437.
CVSS base score
5.9/10
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Key dates
02Disclosure timeline
July 8, 2023
CVE published
February 13, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2020-3134 Cisco Email Security Appliance Zip Decompression Engine Denial of Service Vulnerability
CVE-2018-15408 Cisco Webex Network Recording Player and Cisco Webex Player Remote Code Execution Vulnerabilities
CVE-2018-0325
CVE-2023-44192 Junos OS: QFX5000 Series: DMA memory leak is observed when specific DHCP packets are transmitted over pseudo-VTEP
CVE-2023-29457 Insufficient validation of Action form input fields
