CVE-2023-38719

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Oct 17, 2023

Updated: Dec 22, 2023

CWE ID 20

Summary

CVE-2023-38719 is a newly discovered vulnerability affecting IBM Db2 11.5. This issue permits a local user with elevated privileges to trigger a denial-of-service condition during database deactivation on DPF. IBM's X-Force has assigned this vulnerability the ID 261607. The exploitation of this vulnerability could lead to disrupted database services, posing a significant risk to organizations that rely on IBM Db2 11.5 for critical operations. IBM urges users to apply the available patch to mitigate this issue and prevent potential downtime.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM DB2

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sGyYai
https://www.cve.org/CVERecord?id=CVE-2023-38719
https://nvd.nist.gov/vuln/detail/CVE-2023-38719

Back to Vulnerability Database