CVE-2024-37071

Name of the Vulnerable Software and Affected Versions: IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) versions 10.5, 11.1, and 11.5

Description: The issue is related to uncontrolled memory allocation in the IBM DB2 system, which can be exploited by an authenticated user to cause a denial of service using a specially crafted query. This is due to improper memory allocation.

Recommendations: For versions 10.5, 11.1, and 11.5, update via IBM Fix Central to resolve the issue. As a temporary workaround, consider restricting access to the database to minimize the risk of exploitation.