CVSS 3.1 Score 5.3 of 10 (medium)


Published Oct 17, 2023
Updated: Dec 22, 2023


CVE-2023-40373 is a vulnerability in IBM Db2 for Linux, UNIX, and Windows (including Db2 Connect Server) that can be exploited to cause a denial of service. The vulnerability occurs when a specially crafted query containing common table expressions is used. This vulnerability has a base severity of MEDIUM and an exploitability score of 1.6. The affected products include QtrKvq, QtrKvr, X6Ijgv, c7lWjb, QtrKvk, X6Ijgr, X6Ijgq, X6Ijgz, X6Ijgy, X6Ijgx, X6Ijgw, jJ0trG, t1jDva, jJ0trE, jJ0trF, sB95IY, sB95IZ, sB95Ia, sB95Ib, bQec6X, t9y8Yp, sB95IW,sB95IX,gRa2FW,tz5NzT,QtrKvX. It is recommended to apply the necessary security patches or updates provided by IBM to remediate this vulnerability.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-40373 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options