CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-36442

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query with XML columns.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.0%

CVSS Severity

CVSS v3 Score 6.5

References

https://www.ibm.com/support/pages/node/7257698

Products affected by CVE-2025-36442

Ibm » Db2 » Version: 11.5.0

cpe:2.3:a:ibm:db2:11.5.0
Ibm » Db2 » Version: 11.5.9

cpe:2.3:a:ibm:db2:11.5.9
Ibm » Db2 » Version: 12.1.0

cpe:2.3:a:ibm:db2:12.1.0
Ibm » Db2 » Version: 12.1.1

cpe:2.3:a:ibm:db2:12.1.1
Ibm » Db2 » Version: 12.1.2

cpe:2.3:a:ibm:db2:12.1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-36442

Products

Pricing

Contact Us