IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 could allow an authenticated user with CONNECT privileges to cause a denial of service using a specially crafted query. IBM X-Force ID: 272644.
References
| Link | Resource |
|---|---|
| https://exchange.xforce.ibmcloud.com/vulnerabilities/272644 | VDB Entry Vendor Advisory |
| https://security.netapp.com/advisory/ntap-20240307-0003/ | |
| https://www.ibm.com/support/pages/node/7105505 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
21 Oct 2024, 11:35
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-770 |
07 Mar 2024, 17:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
25 Jan 2024, 02:04
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:ibm:db2:*:*:*:*:*:*:*:* cpe:2.3:o:ibm:linux_on_ibm_z:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:* cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:* |
|
| First Time |
Oracle
Ibm Linux Microsoft Microsoft windows Ibm db2 Linux linux Kernel Ibm linux On Ibm Z Oracle solaris Hp Ibm aix Hp hp-ux |
|
| References | () https://www.ibm.com/support/pages/node/7105505 - Patch, Vendor Advisory | |
| References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/272644 - VDB Entry, Vendor Advisory | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
| CWE | NVD-CWE-noinfo |
22 Jan 2024, 20:28
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-01-22 19:15
Updated : 2024-10-21 11:35
NVD link : CVE-2023-47746
Mitre link : CVE-2023-47746
CVE.ORG link : CVE-2023-47746
JSON object : View
Products Affected
hp
- hp-ux
ibm
- aix
- linux_on_ibm_z
- db2
linux
- linux_kernel
microsoft
- windows
oracle
- solaris
CWE
NVD-CWE-noinfo
CWE-20
Improper Input Validation
CWE-770Allocation of Resources Without Limits or Throttling