IBM Db2 Denial of Service_CVE-2025-36009

6.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Description

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow an unauthenticated user to cause a denial of service due to excessive use of a global variable.

Basic Information

ID CVE-2025-36009

Source ibm

Published Jan 30, 2026 at 21:28

Modified Jan 30, 2026 at 21:41

Affected Product

Vendor IBM

Product Db2 for Linux, UNIX and Windows

Version 11.5.0

Affected Versions IBM Db2 for Linux, UNIX and Windows 11.5.0
IBM Db2 for Linux, UNIX and Windows 12.1.0

CWE Classification

CWE-1108

References

www.ibm.com /support/pages/node/7257623

{
    "lastseen": "",
    "description": "IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow an unauthenticated user to cause a denial of service due to excessive use of a global variable.",
    "published": "2026-01-30T21:28:12.081Z",
    "modified": "2026-01-30T21:41:42.479Z",
    "type": "cve",
    "title": "IBM Db2 Denial of Service",
    "source": "ibm",
    "references": "https://www.ibm.com/support/pages/node/7257623",
    "id": "CVE-2025-36009",
    "bulletinFamily": "",
    "cwe": [
        "CWE-1108"
    ],
    "cvelist": null,
    "sourceData": "IBM Db2 for Linux, UNIX and Windows 11.5.0\nIBM Db2 for Linux, UNIX and Windows 12.1.0",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Db2 for Linux, UNIX and Windows",
    "version": "11.5.0",
    "vendor": "IBM",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}