Denial of Service Vulnerability in IBM Db2 for Linux, UNIX, and Windows
CVE-2025-1493

5.3MEDIUM

Key Information:

Vendor
IBM
Status
Db2 For Linux, Unix And Windows
Vendor
CVE Published:
5 May 2025

Summary

A vulnerability in IBM Db2 for Linux, UNIX, and Windows permits an authenticated user to trigger a denial of service. This is achievable due to the concurrent execution of shared resources in affected versions. It is crucial for users and administrators to assess and mitigate any risks associated with this vulnerability to maintain system integrity and availability.

Affected Version(s)

Db2 for Linux, UNIX and Windows 12.1.0 <= 12.1.1

References

https://www.ibm.com/support/pages/node/7232518
vendor-advisory

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-1493 : Denial of Service Vulnerability in IBM Db2 for Linux, UNIX, and Windows | SecurityVulnerability.io