Lucene search

[email protected]CVE-2024-22360

HistoryApr 03, 2024 - 1:16 p.m.

CVE-2024-22360

2024-04-0313:16:01

CWE-20

[email protected]

web.nvd.nist.gov

cve-2024-22360

organization

individual

new security problem

publicized

details

nvd

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%

JSON

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 is vulnerable to a denial of service with a specially crafted query on certain columnar tables. IBM X-Force ID: 280905.

Affected configurations

Vulners

Node

ibmdb2Match11.5

VendorProductVersionCPE
ibmdb211.5cpe:2.3:a:ibm:db2:11.5:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	db2	11.5	cpe:2.3:a:ibm:db2:11.5:::::::*

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Db2 for Linux, UNIX and Windows",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "11.5"
      }
    ]
  }
]

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/280905

security.netapp.com/advisory/ntap-20240517-0003/

www.ibm.com/support/pages/node/7145730

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

6.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.5%

JSON

Related for CVE-2024-22360

nvd1 cvelist1 ibm8 nessus2