First published: Fri Jul 07 2023(Updated: )
IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain tables. IBM X-Force ID: 253437.
Credit: psirt@us.ibm.com psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
Ibm Db2 | =10.5.0.11 | |
Ibm Db2 | =11.1.4.7 | |
IBM IBM® Db2® | =11.5 | |
HP HP-UX | ||
IBM AIX | ||
Linux Linux kernel | ||
Microsoft Windows | ||
Oracle Solaris | ||
<=10.5.0.11 | ||
<=11.1.4.7 | ||
<=11.5.x |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2023-30448.
The severity of CVE-2023-30448 is high with a severity value of 7.
IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) versions 10.5, 11.1, and 11.5 are affected by this vulnerability.
This vulnerability allows for denial of service attacks with a specially crafted query on certain tables.
More information about CVE-2023-30448 vulnerability can be found at the following references: - [IBM X-Force ID: 253437](https://exchange.xforce.ibmcloud.com/vulnerabilities/253437) - [IBM Support](https://www.ibm.com/support/pages/node/7010557) - [NetApp Security Advisory](https://security.netapp.com/advisory/ntap-20230731-0007/)