Skip to main content

Informix Dynamic Server

13 CVEs product

Monthly

CVE-2024-45675 HIGH This Week

CVE-2024-45675 is a security vulnerability (CVSS 8.4) that allows a local user. High severity vulnerability requiring prompt remediation.

Information Disclosure IBM Informix Dynamic Server
NVD
CVSS 3.1
8.4
EPSS
0.0%
CVE-2025-1991 HIGH This Week

IBM Informix Dynamic Server 12.10,14.10, and15.0 could allow a remote attacker to cause a denial of service due to an integer underflow when processing packets.

Integer Overflow IBM Denial Of Service Informix Dynamic Server
NVD
CVSS 3.1
7.5
EPSS
0.1%
CVE-2023-28527 MEDIUM This Month

IBM Informix Dynamic Server 12.10 and 14.10 cdr is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow a local user to cause a segmentation fault. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Heap Overflow IBM Informix Dynamic Server Informix Dynamic Server On Cloud Pak For Data
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-28526 MEDIUM This Month

IBM Informix Dynamic Server 12.10 and 14.10 archecker is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow a local user to cause a segmentation fault. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Heap Overflow IBM Informix Dynamic Server Informix Dynamic Server On Cloud Pak For Data
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2023-28523 HIGH This Week

IBM Informix Dynamic Server 12.10 and 14.10 onsmsync is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Heap Overflow IBM Informix Dynamic Server +1
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2021-20515 MEDIUM PATCH This Month

IBM Informix Dynamic Server 14.10 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow RCE IBM Memory Corruption Denial Of Service +1
NVD
CVSS 3.1
6.7
EPSS
0.3%
CVE-2020-4799 HIGH PATCH This Week

IBM Informix spatial 14.10 could allow a local user to execute commands as a privileged user due to an out of bounds write vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow IBM Memory Corruption Informix Dynamic Server
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2019-4253 HIGH This Week

IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local privileged Informix user to load a malicious shared library and gain root access privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

IBM Information Disclosure Informix Dynamic Server
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2017-1508 MEDIUM This Month

IBM Informix Dynamic Server 12.1 could allow a local user logged in with database administrator user to gain root privileges. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

IBM Information Disclosure Informix Dynamic Server
NVD
CVSS 3.0
6.7
EPSS
0.0%
CVE-2017-1310 MEDIUM PATCH This Month

IBM Informix Dynamic Server 12.1 could allow an authenticated user to cause a buffer overflow that would write large assertion fail files to the server. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Buffer Overflow IBM Informix Dynamic Server
NVD
CVSS 3.0
6.5
EPSS
0.7%
CVE-2016-0226 HIGH PATCH This Week

The client implementation in IBM Informix Dynamic Server 11.70.xCn on Windows does not properly restrict access to the (1) nsrd, (2) nsrexecd, and (3) portmap executable files, which allows local. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Microsoft IBM Authentication Bypass Informix Dynamic Server
NVD
CVSS 3.0
7.8
EPSS
0.0%
CVE-2012-4857 CRITICAL Act Now

Buffer overflow in IBM Informix 11.50 through 11.50.xC9W2 and 11.70 before 11.70.xC7 allows remote authenticated users to execute arbitrary code via a crafted SQL statement. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow RCE IBM Informix Dynamic Server
NVD
CVSS 2.0
9.0
EPSS
7.6%
CVE-2012-3334 CRITICAL Act Now

Stack-based buffer overflow in IBM Informix Dynamic Server (IDS) 11.50 before 11.50.xC9W2 and 11.70 before 11.70.xC5 allows remote authenticated users to execute arbitrary code via crafted arguments. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow RCE IBM Informix Dynamic Server
NVD
CVSS 2.0
9.0
EPSS
8.5%
EPSS 0% CVSS 8.4
HIGH This Week

CVE-2024-45675 is a security vulnerability (CVSS 8.4) that allows a local user. High severity vulnerability requiring prompt remediation.

Information Disclosure IBM Informix Dynamic Server
NVD
EPSS 0% CVSS 7.5
HIGH This Week

IBM Informix Dynamic Server 12.10,14.10, and15.0 could allow a remote attacker to cause a denial of service due to an integer underflow when processing packets.

Integer Overflow IBM Denial Of Service +1
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

IBM Informix Dynamic Server 12.10 and 14.10 cdr is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow a local user to cause a segmentation fault. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Heap Overflow IBM +2
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

IBM Informix Dynamic Server 12.10 and 14.10 archecker is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow a local user to cause a segmentation fault. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Heap Overflow IBM +2
NVD
EPSS 0% CVSS 7.8
HIGH This Week

IBM Informix Dynamic Server 12.10 and 14.10 onsmsync is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow RCE Heap Overflow +3
NVD
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

IBM Informix Dynamic Server 14.10 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow RCE IBM +3
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

IBM Informix spatial 14.10 could allow a local user to execute commands as a privileged user due to an out of bounds write vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Buffer Overflow IBM Memory Corruption +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local privileged Informix user to load a malicious shared library and gain root access privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

IBM Information Disclosure Informix Dynamic Server
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

IBM Informix Dynamic Server 12.1 could allow a local user logged in with database administrator user to gain root privileges. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

IBM Information Disclosure Informix Dynamic Server
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

IBM Informix Dynamic Server 12.1 could allow an authenticated user to cause a buffer overflow that would write large assertion fail files to the server. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Buffer Overflow IBM Informix Dynamic Server
NVD
EPSS 0% CVSS 7.8
HIGH PATCH This Week

The client implementation in IBM Informix Dynamic Server 11.70.xCn on Windows does not properly restrict access to the (1) nsrd, (2) nsrexecd, and (3) portmap executable files, which allows local. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.

Microsoft IBM Authentication Bypass +1
NVD
EPSS 8% CVSS 9.0
CRITICAL Act Now

Buffer overflow in IBM Informix 11.50 through 11.50.xC9W2 and 11.70 before 11.70.xC7 allows remote authenticated users to execute arbitrary code via a crafted SQL statement. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow RCE IBM +1
NVD
EPSS 9% CVSS 9.0
CRITICAL Act Now

Stack-based buffer overflow in IBM Informix Dynamic Server (IDS) 11.50 before 11.50.xC9W2 and 11.70 before 11.70.xC5 allows remote authenticated users to execute arbitrary code via crafted arguments. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Buffer Overflow RCE IBM +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy