CVE-2024-22360

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Apr 3, 2024
Updated: Jun 10, 2024
CWE ID 20

Summary

CVE-2024-22360 is a newly disclosed vulnerability affecting IBM Db2 for Linux, UNIX, and Windows versions 11.5. Hackers can exploit this vulnerability by sending a specially crafted query to certain columnar tables, resulting in a denial of service (DoS) attack. IBM X-Force has assigned the ID 280905 to this issue. IBM users are advised to apply the appropriate patches as soon as possible to mitigate this risk. This vulnerability could potentially allow attackers to cause disruptions in mission-critical applications that rely on IBM Db2.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • IBM DB2
  • IBM DB2 Connect

Affected Vendors

  • IBM Corporation