IBM Db2 Denial of Service_CVE-2025-13867

6.5 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Description

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through 12.1.3 could allow an authenticated user to cause a denial of service due to improper neutralization of special elements in data query logic

Basic Information

ID CVE-2025-13867

Source ibm

Published Feb 17, 2026 at 17:13

Modified Feb 17, 2026 at 17:16

Affected Product

Vendor IBM

Product Db2 for Linux, UNIX and Windows

Version 11.5.0

Affected Versions IBM Db2 for Linux, UNIX and Windows 11.5.0
IBM Db2 for Linux, UNIX and Windows 12.1.0

CWE Classification

CWE-1284

References

www.ibm.com /support/pages/node/7259963

{
    "lastseen": "",
    "description": "IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 through\u00a011.5.9 and\u00a012.1.0 through\u00a012.1.3\u00a0could allow an authenticated user to cause a denial of service due to improper neutralization of special elements in data query logic",
    "published": "2026-02-17T17:13:00.450Z",
    "modified": "2026-02-17T17:16:17.979Z",
    "type": "cve",
    "title": "IBM Db2 Denial of Service",
    "source": "ibm",
    "references": "https://www.ibm.com/support/pages/node/7259963",
    "id": "CVE-2025-13867",
    "bulletinFamily": "",
    "cwe": [
        "CWE-1284"
    ],
    "cvelist": null,
    "sourceData": "IBM Db2 for Linux, UNIX and Windows 11.5.0\nIBM Db2 for Linux, UNIX and Windows 12.1.0",
    "sourceHref": "",
    "cvss": {
        "score": 6.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Db2 for Linux, UNIX and Windows",
    "version": "11.5.0",
    "vendor": "IBM",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}