The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Db2 UDB

IBM DB2: denial of service via Terminate Command
An attacker can trigger a fatal error via Terminate Command of IBM DB2, in order to trigger a denial of service...
6242362, CERTFR-2020-AVI-627, CVE-2020-4420, VIGILANCE-VUL-32674
IBM DB2: denial of service via SSL Renegotiation Requests
An attacker can trigger a fatal error via SSL Renegotiation Requests of IBM DB2, in order to trigger a denial of service...
6242350, CVE-2020-4355, VIGILANCE-VUL-32673
IBM DB2: information disclosure via Shared Memory
An attacker can bypass access restrictions to data via Shared Memory of IBM DB2, in order to obtain sensitive information...
6242356, CVE-2020-4414, VIGILANCE-VUL-32672
IBM DB2: information disclosure via Symbolic Link
An attacker can bypass access restrictions to data via Symbolic Link of IBM DB2, in order to obtain sensitive information...
6242342, CVE-2020-4386, VIGILANCE-VUL-32671
IBM DB2: information disclosure via Symbolic Link
An attacker can bypass access restrictions to data via Symbolic Link of IBM DB2, in order to obtain sensitive information...
6242336, CVE-2020-4387, VIGILANCE-VUL-32670
IBM DB2: buffer overflow
An attacker can trigger a buffer overflow of IBM DB2, in order to trigger a denial of service, and possibly to run code...
6242332, CERTFR-2020-AVI-409, CERTFR-2020-AVI-516, CERTFR-2020-AVI-627, CVE-2020-4363, VIGILANCE-VUL-32669
snakeyaml: external YAML entity injection
An attacker can transmit malicious YAML data to snakeyaml, in order to read a file, scan sites, or trigger a denial of service...
6198380, CVE-2017-18640, FEDORA-2020-23012fafbc, VIGILANCE-VUL-32101
IBM DB2: multiple vulnerabilities in libraries
An attacker can use several vulnerabilities in libraries used by IBM DB2...
6198380, CVE-2017-12972, CVE-2017-12973, CVE-2017-12974, CVE-2017-18640, CVE-2017-3734-REJECT, VIGILANCE-VUL-32090
Netty: overload via SSLv2Hello SslHandler
An attacker can trigger an overload via SSLv2Hello SslHandler of Netty, in order to trigger a denial of service...
6198380, CVE-2014-3488, DLA-2110-1, VIGILANCE-VUL-31648
IBM DB2: buffer overflow
An attacker can trigger a buffer overflow of IBM DB2, in order to trigger a denial of service, and possibly to run code...
2875875, 6221294, CERTFR-2020-AVI-098, CVE-2020-4204, VIGILANCE-VUL-31628
Our database contains other pages. You can request a free trial to read them.

Display information about Db2 UDB: