CVE-2023-29255
published 2023-04-27CVE-2023-29255: IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as it may trap when compiling a…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
IBM DB2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as it may trap when compiling a variation of an anonymous block. IBM X-Force ID: 251991.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | db2 | — | — |
| ibm | db2 | — | — |
| ibm | db2 | >= 11.1 < 11.1.4 | 11.1.4 |
| ibm | db2 | >= 11.5 < 11.5.8 | 11.5.8 |