CVE-2024-39724 IBM — Exploit & Vulnerability Details MEDIUM

CVE-2024-39724

MEDIUM CVSS 3.1: 5.3 EPSS 0.05%

Parameter	Value
CVSS	5.3 (MEDIUM)
Type	CWE-770 (Allocation Without Limits)
Vendor	IBM
Public PoC	No

IBM Db2 Big SQL on Cloud Pak for Data versions 7.6 (on CP4D 4.8), 7.7 (on CP4D 5.0), and 7.8 (on CP4D 5.1) do not properly limit the allocation of system resources. An authenticated user with internal knowledge of the environment could exploit this weakness to cause a denial of service.

Attack Parameters

Attack Vector

Network

Can be exploited remotely

Attack Complexity

High

Difficult to exploit

Privileges Required

Low

Basic privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

None

No data leak

Integrity

None

No data modification

Availability

High

Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-770 Allocation Without Limits

References 1

https://www.ibm.com/support/pages/node/7257907

psirt@us.ibm.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2026-1276

IBM

5.4

CVE-2025-36051

IBM

6.2

CVE-2025-15051

IBM

5.4

CVE-2025-13995

IBM

5.0

CVE-2026-3856

IBM

9.1

Menu

CVE-2024-39724

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-1276

CVE-2025-36051

CVE-2025-15051

CVE-2025-13995

CVE-2026-3856

CVE Details

Editor's Choice

Menu

CVE-2024-39724

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

References 1

Related Vulnerabilities

CVE-2026-1276

CVE-2025-36051

CVE-2025-15051

CVE-2025-13995

CVE-2026-3856

CVE Details

Editor's Choice

Stay informed on cybersecurity