CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-36407

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow a local user to cause a denial of service due to improper neutralization of special elements in data query logic.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 15.2%

CVSS Severity

CVSS v3 Score 6.5

References

https://www.ibm.com/support/pages/node/7257692

Products affected by CVE-2025-36407

Ibm » Db2 » Version: 11.5.0

cpe:2.3:a:ibm:db2:11.5.0
Ibm » Db2 » Version: 11.5.9

cpe:2.3:a:ibm:db2:11.5.9
Ibm » Db2 » Version: 12.1.0

cpe:2.3:a:ibm:db2:12.1.0
Ibm » Db2 » Version: 12.1.1

cpe:2.3:a:ibm:db2:12.1.1
Ibm » Db2 » Version: 12.1.2

cpe:2.3:a:ibm:db2:12.1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-36407

Products

Pricing

Contact Us