CVE-2024-31880

Name of the Vulnerable Software and Affected Versions IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) versions 10.5, 11.1, and 11.5

Description The issue is related to a denial of service under specific configurations, where the server may crash when using a specially crafted SQL statement by an authenticated user. This can lead to system instability due to resource allocation issues.

Recommendations For versions 10.5, 11.1, and 11.5, upgrade the affected components immediately to resolve the issue. As a temporary workaround, consider restricting access to the SQL statement handler to minimize the risk of exploitation.