CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-30431

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 db2set is vulnerable to a buffer overflow, caused by improper bounds checking. An attacker could overflow the buffer and execute arbitrary code. IBM X-Force ID: 252184.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.7%

CVSS Severity

CVSS v3 Score 8.4

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/252184
https://security.netapp.com/advisory/ntap-20230731-0007/
https://www.ibm.com/support/pages/node/7010565
https://exchange.xforce.ibmcloud.com/vulnerabilities/252184
https://security.netapp.com/advisory/ntap-20230731-0007/
https://www.ibm.com/support/pages/node/7010565

Products affected by CVE-2023-30431

Ibm » Db2 » Version: 10.5.0.11

cpe:2.3:a:ibm:db2:10.5.0.11
Ibm » Db2 » Version: 11.1.4.7

cpe:2.3:a:ibm:db2:11.1.4.7
Ibm » Db2 » Version: 11.5

cpe:2.3:a:ibm:db2:11.5
Hp » Hp-Ux » Version: N/A

cpe:2.3:o:hp:hp-ux:-
Ibm » Aix » Version: N/A

cpe:2.3:o:ibm:aix:-
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-
Oracle » Solaris » Version: N/A

cpe:2.3:o:oracle:solaris:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-30431

Products

Pricing

Contact Us