CVE-2023-30443

📊 5.3 MEDIUM⚡ 0.1%🎯 0 exploits

📅 Published Dec 19, 2024

📋 Status: Analyzed

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query.

CVSS v3.1 • [email protected]

🎯 Affected Products & Systems

14 product configurations affected

Filter by type:

Type	Vendor	Product	Version Range	Status	CPE String
📱App	ibm	db2	10.5 Target SW: linux	Vulnerable	cpe:2.3:a:ibm:db2:10.5:::::linux::
📱App	ibm	db2	10.5 Target SW: unix	Vulnerable	cpe:2.3:a:ibm:db2:10.5:::::unix::
📱App	ibm	db2	10.5 Target SW: windows	Vulnerable	cpe:2.3:a:ibm:db2:10.5:::::windows::
📱App	ibm	db2	11.1 Target SW: linux	Vulnerable	cpe:2.3:a:ibm:db2:11.1:::::linux::
📱App	ibm	db2	11.1 Target SW: unix	Vulnerable	cpe:2.3:a:ibm:db2:11.1:::::unix::
📱App	ibm	db2	11.1 Target SW: windows	Vulnerable	cpe:2.3:a:ibm:db2:11.1:::::windows::
📱App	ibm	db2	11.5 Target SW: linux	Vulnerable	cpe:2.3:a:ibm:db2:11.5:::::linux::
📱App	ibm	db2	11.5 Target SW: unix	Vulnerable	cpe:2.3:a:ibm:db2:11.5:::::unix::
📱App	ibm	db2	11.5 Target SW: windows	Vulnerable	cpe:2.3:a:ibm:db2:11.5:::::windows::
💻OS	hp	hp-ux	All versions	Not Vulnerable	cpe:2.3:o:hp:hp-ux:-:::::::*
💻OS	ibm	aix	All versions	Not Vulnerable	cpe:2.3:o:ibm:aix:-:::::::*
💻OS	linux	linux kernel	All versions	Not Vulnerable	cpe:2.3:o:linux:linux_kernel:-:::::::*
💻OS	microsoft	windows	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows:-:::::::*
💻OS	oracle	solaris	All versions	Not Vulnerable	cpe:2.3:o:oracle:solaris:-:::::::*

📱

ibm / db2

Application

Vulnerable

Version: 10.5

Target SW: linux

CPE:

cpe:2.3:a:ibm:db2:10.5:*:*:*:*:linux:*:*

📱

ibm / db2

Application

Vulnerable

Version: 10.5

Target SW: unix

CPE:

cpe:2.3:a:ibm:db2:10.5:*:*:*:*:unix:*:*

📱

ibm / db2

Application

Vulnerable

Version: 10.5

Target SW: windows

CPE:

cpe:2.3:a:ibm:db2:10.5:*:*:*:*:windows:*:*

📱

ibm / db2

Application

Vulnerable

Version: 11.1

Target SW: linux

CPE:

cpe:2.3:a:ibm:db2:11.1:*:*:*:*:linux:*:*

📱

ibm / db2

Application

Vulnerable

Version: 11.1

Target SW: unix

CPE:

cpe:2.3:a:ibm:db2:11.1:*:*:*:*:unix:*:*

📱

ibm / db2

Application

Vulnerable

Version: 11.1

Target SW: windows

CPE:

cpe:2.3:a:ibm:db2:11.1:*:*:*:*:windows:*:*

📱

ibm / db2

Application

Vulnerable

Version: 11.5

Target SW: linux

CPE:

cpe:2.3:a:ibm:db2:11.5:*:*:*:*:linux:*:*

📱

ibm / db2

Application

Vulnerable

Version: 11.5

Target SW: unix

CPE:

cpe:2.3:a:ibm:db2:11.5:*:*:*:*:unix:*:*

📱

ibm / db2

Application

Vulnerable

Version: 11.5

Target SW: windows

CPE:

cpe:2.3:a:ibm:db2:11.5:*:*:*:*:windows:*:*

💻

hp / hp-ux

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*

💻

ibm / aix

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*

💻

linux / linux kernel

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

💻

microsoft / windows

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

💻

oracle / solaris

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*

14 products•scroll for more

Metrics

5.3 MEDIUMCVSS v3.1[email protected]

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector:

NETWORK

Complexity:

HIGH

Privileges:

LOW

User Interaction:

NONE

Confidentiality:

NONE

Integrity:

NONE

Availability:

HIGH

Scope:

UNCHANGED

🔍 Technical Details

Analysis Status

Analyzed

CVSS Details

5.3 (MEDIUM)v3.1

Source: [email protected]

EPSS Details

0.1% (Minimal)20.7th percentile

Last updated: Nov 1, 2025

Exploitation probability within 30 days

Published Date

Dec 19, 2024 (10 months ago)

Last Modified

Jan 31, 2025 (9 months ago)

Security Weaknesses1

CWE-770

References2

NVDgeneral