VDB
CVE-2024-27254
CVE-2024-27254
PUBLISHED
In IBM DB2 existieren mehrere Schwachstellen. Diese sind auf die Nutzung von speziellen Abfragen oder Funktionen zurückzuführen, welche zu einem Absturz führen können. Ein entfernter, authentisierter Angreifer kann diese Schwachstelle ausnutzen, um einen Denial of Service Zustand herbeizuführen.
EPSS 0.08% · 23.0th percentile
Risk Scores
EPSS Score
0.08%
23.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| IBM | IBM Security Guardium Key Lifecycle Manager 4.0 | |
| IBM | IBM License Metric Tool 9.2.0-9.2.35 | |
| IBM | IBM Security Guardium Key Lifecycle Manager 4.1.1 | |
| IBM | IBM Security Guardium Key Lifecycle Manager 4.1 | |
| IBM | IBM DB2 | |
| IBM | IBM Security Guardium Key Lifecycle Manager 4.2 | |
| IBM | IBM Security Guardium Key Lifecycle Manager 4.2.1 |
Timeline
- Feb 8, 2024 PoC Published
- Apr 2, 2024 CVE Published
- Apr 4, 2024 EPSS Score
- Apr 29, 2024 EPSS Score
- May 20, 2024 CVE Updated
- May 25, 2024 EPSS Score
- Jun 20, 2024 EPSS Score
- Jul 15, 2024 EPSS Score
- Aug 9, 2024 EPSS Score
- Sep 4, 2024 EPSS Score
- Sep 29, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0766.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0766 advisory
- https://www.ibm.com/support/pages/node/7145724 advisory
- https://www.ibm.com/support/pages/node/7145721 advisory
- https://www.ibm.com/support/pages/node/7145722 advisory
- https://www.ibm.com/support/pages/node/7145730 advisory
- https://www.ibm.com/support/pages/node/7145725 advisory
- https://www.ibm.com/support/pages/node/7145726 advisory
- https://www.ibm.com/support/pages/node/7145727 advisory
- https://www.ibm.com/support/pages/node/7147904 advisory
- https://www.ibm.com/support/pages/node/7150158 advisory
- http://www.ibm.com/support/pages/node/7153650 advisory