CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-1992

IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through 12.1.1 could allow an authenticated user in federation environment, to cause a denial of service due to insufficient release of allocated memory after usage.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 29.0%

CVSS Severity

CVSS v3 Score 5.3

References

https://www.ibm.com/support/pages/node/7232515

Products affected by CVE-2025-1992

Ibm » Db2 » Version: 11.5.0

cpe:2.3:a:ibm:db2:11.5.0
Ibm » Db2 » Version: 11.5.9

cpe:2.3:a:ibm:db2:11.5.9
Ibm » Db2 » Version: 12.1.0

cpe:2.3:a:ibm:db2:12.1.0
Ibm » Db2 » Version: 12.1.1

cpe:2.3:a:ibm:db2:12.1.1
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-
Opengroup » Unix » Version: N/A

cpe:2.3:o:opengroup:unix:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-1992

Products

Pricing

Contact Us