English
Français
Light
Dark
System

Alert System

Stay informed at all times
Create an account Open a free account Login Manage your alerts

IBM DB2 Connect 11.1.0.0 Application Server

CPE Details

IBM DB2 Connect 11.1.0.0 Application Server
ibm
db2_connect
11.1.0.0
2017-05-04 16:42 +00:00
2017-05-04 16:42 +00:00
CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.
Alert management

CPE Name: cpe:2.3:a:ibm:db2_connect:11.1.0.0:*:*:*:application_server:*:*:*

Informations

Vendor

ibm

Product

db2_connect

Version

11.1.0.0

Software Edition

application_server

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2017-1520 2017-09-07 22:00 +00:00 IBM DB2 9.7, 10,1, 10.5, and 11.1 is vulnerable to an unauthorized command that allows the database to be activated when authentication type is CLIENT. IBM X-Force ID: 129830.
3.7
LOW
CVE-2017-1434 2017-09-06 22:00 +00:00 IBM DB2 for Linux, UNIX and Windows 11.1 (includes DB2 Connect Server) under unusual circumstances, could expose highly sensitive information in the error log to a local user.
4.7
MEDIUM
CVE-2017-1438 2017-09-06 22:00 +00:00 IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user with DB2 instance owner privileges to obtain root access. IBM X-Force ID: 128057.
6.7
MEDIUM
CVE-2017-1439 2017-09-06 22:00 +00:00 IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user with DB2 instance owner privileges to obtain root access. IBM X-Force ID: 128058.
6.7
MEDIUM
CVE-2017-1451 2017-09-06 22:00 +00:00 IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user with DB2 instance owner privileges to obtain root access. IBM X-Force ID: 128178.
7.8
HIGH
CVE-2017-1452 2017-09-06 22:00 +00:00 IBM DB2 for Linux, UNIX and Windows 9.7, 10,1, 10.5, and 11.1 (includes DB2 Connect Server) could allow a local user to obtain elevated privilege and overwrite DB2 files. IBM X-Force ID: 128180.
7.8
HIGH
CVE-2017-1519 2017-09-06 22:00 +00:00 IBM DB2 10.5 and 11.1 contains a denial of service vulnerability. A remote user can cause disruption of service for DB2 Connect Server setup with a particular configuration. IBM X-Force ID: 129829.
5.9
MEDIUM
CVE-2017-1105 2017-06-27 14:00 +00:00 IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, and 11.1 (includes DB2 Connect Server) is vulnerable to a buffer overflow that could allow a local user to overwrite DB2 files or cause a denial of service. IBM X-Force ID: 120668.
7.1
HIGH
CVE-2017-1297 2017-06-27 14:00 +00:00 IBM DB2 for Linux, UNIX and Windows 9.2, 10.1, 10.5, and 11.1 (includes DB2 Connect Server) is vulnerable to a stack-based buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code. IBM X-Force ID: 125159.
7.3
HIGH
CVE-2016-5995 2016-09-30 23:00 +00:00 Untrusted search path vulnerability in IBM DB2 9.7 through FP11, 10.1 through FP5, 10.5 before FP8, and 11.1 GA on Linux, AIX, and HP-UX allows local users to gain privileges via a Trojan horse library that is accessed by a setuid or setgid program.
7.3
HIGH

More information
Click on the button to the left (OFF), to authorize the inscription of cookie improving the functionalities of the site. Click on the button to the left (Accept all), to unauthorize the inscription of cookie improving the functionalities of the site.