IBM Informix Dynamic Server
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in IBM Informix Dynamic Server.
By the Year
In 2026 there have been 0 vulnerabilities in IBM Informix Dynamic Server. Last year, in 2025 Informix Dynamic Server had 4 security vulnerabilities published. Right now, Informix Dynamic Server is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 4 | 7.20 |
| 2024 | 0 | 0.00 |
| 2023 | 3 | 6.27 |
| 2022 | 0 | 0.00 |
| 2021 | 1 | 0.00 |
| 2020 | 1 | 7.80 |
| 2019 | 9 | 7.80 |
It may take a day or so for new Informix Dynamic Server vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Informix Dynamic Server Security Vulnerabilities
IBM Informix Dynamic Server 14.10 Local Admin Impersonation
CVE-2024-45675
8.4 - High
- December 02, 2025
IBM Informix Dynamic Server 14.10 could allow a local user on the system to log into the Informix server as administrator without a password.
Use of Password System for Primary Authentication
IBM Informix DMS 12.10/14.10 Brute Force via Poor Lockout
CVE-2024-49342
7.5 - High
- July 28, 2025
IBM Informix Dynamic Server 12.10 and 14.10 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials.
Improper Restriction of Excessive Authentication Attempts
IBM Informix DSS 12.10/14.10 HTML Injection via Web UI (RCE)
CVE-2024-49343
5.4 - Medium
- July 28, 2025
IBM Informix Dynamic Server 12.10 and 14.10 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.
Basic XSS
IBM Informix Dynamic Server 12.10/14.10/15.0 Remote DoS via Integer Underflow
CVE-2025-1991
7.5 - High
- June 28, 2025
IBM Informix Dynamic Server 12.10,14.10, and15.0 could allow a remote attacker to cause a denial of service due to an integer underflow when processing packets.
Integer underflow
IBM Informix Dynamic Server 12.10/14.10 onsmsync Heap Buffer Overflow
CVE-2023-28523
7.8 - High
- December 09, 2023
IBM Informix Dynamic Server 12.10 and 14.10 onsmsync is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow an attacker to execute arbitrary code. IBM X-Force ID: 250753.
Memory Corruption
IBM Informix Dynamic Server 12.10/14.10 archecker Heap Overflow
CVE-2023-28526
5.5 - Medium
- December 09, 2023
IBM Informix Dynamic Server 12.10 and 14.10 archecker is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow a local user to cause a segmentation fault. IBM X-Force ID: 251204.
Memory Corruption
IBM Informix Dynamic Server Heap Overflow in CDR (v12.10/14.10)
CVE-2023-28527
5.5 - Medium
- December 09, 2023
IBM Informix Dynamic Server 12.10 and 14.10 cdr is vulnerable to a heap buffer overflow, caused by improper bounds checking which could allow a local user to cause a segmentation fault. IBM X-Force ID: 251206.
Memory Corruption
IBM Informix Dynamic Server 14.10 is vulnerable to a stack based buffer overflow, caused by improper bounds checking
CVE-2021-20515
- April 30, 2021
IBM Informix Dynamic Server 14.10 is vulnerable to a stack based buffer overflow, caused by improper bounds checking. A local privileged user could overflow a buffer and execute arbitrary code on the system or cause a denial of service condition. IBM X-Force ID: 198366.
IBM Informix spatial 14.10 could allow a local user to execute commands as a privileged user due to an out of bounds write vulnerability
CVE-2020-4799
7.8 - High
- October 08, 2020
IBM Informix spatial 14.10 could allow a local user to execute commands as a privileged user due to an out of bounds write vulnerability. IBM X-Force ID: 189460.
Memory Corruption
IBM Informix Dynamic Server Enterprise Edition 12.1 could
CVE-2018-1630
- August 20, 2019
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in onmode. IBM X-Force ID: 144430.
IBM Informix Dynamic Server Enterprise Edition 12.1 could
CVE-2019-4253
7.8 - High
- August 20, 2019
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local privileged Informix user to load a malicious shared library and gain root access privileges. IBM X-Force ID: 159941.
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user to load malicious libraries and gain root privileges
CVE-2018-1796
- August 20, 2019
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user to load malicious libraries and gain root privileges. IBM X-Force ID: 149426.
Stack-based buffer overflow in oninit in IBM Informix Dynamic Server Enterprise Edition 12.1
CVE-2018-1636
- August 20, 2019
Stack-based buffer overflow in oninit in IBM Informix Dynamic Server Enterprise Edition 12.1 allows an authenticated user to execute predefined code with root privileges, such as escalating to a root shell. IBM X-Force ID: 144441.
Stack-based buffer overflow in oninit in IBM Informix Dynamic Server Enterprise Edition 12.1
CVE-2018-1635
- August 20, 2019
Stack-based buffer overflow in oninit in IBM Informix Dynamic Server Enterprise Edition 12.1 allows an authenticated user to execute predefined code with root privileges, such as escalating to a root shell. IBM X-Force ID: 144439.
IBM Informix Dynamic Server Enterprise Edition 12.1 could
CVE-2018-1634
- August 20, 2019
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in infos.DBSERVERNAME. IBM X-Force ID: 144437.
IBM Informix Dynamic Server Enterprise Edition 12.1 could
CVE-2018-1633
- August 20, 2019
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in onsrvapd. IBM X-Force ID: 144434.
IBM Informix Dynamic Server Enterprise Edition 12.1 could
CVE-2018-1632
- August 20, 2019
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in .infxdirs. IBM X-Force ID: 144432.
IBM Informix Dynamic Server Enterprise Edition 12.1 could
CVE-2018-1631
- August 20, 2019
IBM Informix Dynamic Server Enterprise Edition 12.1 could allow a local user logged in with database administrator user to gain root privileges through a symbolic link vulnerability in oninit mongohash. IBM X-Force ID: 144431.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Informix Dynamic Server or by IBM? Click the Watch button to subscribe.
