CVE-2020-4135

Summary

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow an unauthenticated user to send specially crafted packets to cause a denial of service from excessive memory usage.

Affected Software

VendorProductVersion RangeStatus
IBMDB2 for Linux- UNIX and Windows9.7affected
IBMDB2 for Linux- UNIX and Windows10.1affected
IBMDB2 for Linux- UNIX and Windows10.5affected
IBMDB2 for Linux- UNIX and Windows11.1affected
IBMDB2 for Linux- UNIX and Windows11.5affected

Weaknesses

  • Denial of Service

ADP Enrichment

CVE Program Container

Additional References

References