Denial of Service Vulnerability in IBM Db2 by IBM
CVE-2026-6053

5.5MEDIUM

Key Information:

Vendor: IBM
Status: Db2
Vendor: CVE Published:; 27 May 2026

What is CVE-2026-6053?

IBM Db2 versions 11.5.0 through 11.5.9 and 12.1.0 through 12.1.4 contain a security vulnerability that allows attackers to execute specially crafted queries on range partitioned tables. This can lead to a denial of service, causing the database to become unresponsive and impacting availability. Administrators are advised to review mitigation strategies and apply updates as necessary to safeguard their systems against this threat.

Affected Version(s)

Db2 11.5.0 <= 11.5.9

Db2 12.1.0 <= 12.1.4

References

https://www.ibm.com/support/pages/node/7273556

vendor-advisorypatch

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2026
Vulnerability Reserved
Apr 9, 2026

CVE-2026-6053 Data

JSON