6.5

CVE-2025-36006

Medienbericht

IBM Db2 denial of service

IBM Db2 10.5.0 through 10.5.11, 11.1.0 through 11.1.4.7, 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux, UNIX and Windows (includes Db2 Connect Server) could allow an authenticated user to cause a denial due to the improper release of resources after use.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmDb2 SwPlatformlinux Version >= 10.5.0.0 <= 10.5.0.11
IbmDb2 SwPlatformunix Version >= 10.5.0.0 <= 10.5.0.11
IbmDb2 SwPlatformwindows Version >= 10.5.0.0 <= 10.5.0.11
IbmDb2 SwPlatformlinux Version >= 11.1.0 <= 11.1.4.7
IbmDb2 SwPlatformunix Version >= 11.1.0 <= 11.1.4.7
IbmDb2 SwPlatformwindows Version >= 11.1.0 <= 11.1.4.7
IbmDb2 SwPlatformlinux Version >= 11.5.0 <= 11.5.9
IbmDb2 SwPlatformunix Version >= 11.5.0 <= 11.5.9
IbmDb2 SwPlatformwindows Version >= 11.5.0 <= 11.5.9
IbmDb2 SwPlatformlinux Version >= 12.1.0 <= 12.1.3
IbmDb2 SwPlatformunix Version >= 12.1.0 <= 12.1.3
IbmDb2 SwPlatformwindows Version >= 12.1.0 <= 12.1.3
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.04% 0.12
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
psirt@us.ibm.com 6.5 2.8 3.6
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-404 Improper Resource Shutdown or Release

The product does not release or incorrectly releases a resource before it is made available for re-use.