Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1.4 and 11.5.5 is vulnerable to a denial of service as the server terminates abnormally when executing a specially crafted SELECT statement. IBM X-Force ID: 200658.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/200658 | VDB Entry Vendor Advisory |
https://www.ibm.com/support/pages/node/6463985 | Patch Vendor Advisory |
https://security.netapp.com/advisory/ntap-20210720-0005/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2021-06-16 10:15
Updated : 2021-09-20 10:02
NVD link : CVE-2021-29702
Mitre link : CVE-2021-29702
JSON object : View
CWE
CWE-74
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
Products Affected
ibm
- aix
- db2
microsoft
- windows
linux
- linux_kernel