{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-36123","assignerOrgId":"9a959283-ebb5-44b6-b705-dcc2bbced522","state":"PUBLISHED","assignerShortName":"ibm","dateReserved":"2025-04-15T21:16:18.171Z","datePublished":"2026-01-30T21:28:03.127Z","dateUpdated":"2026-02-02T17:40:46.365Z"},"containers":{"cna":{"affected":[{"cpes":["cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:linux:*:*","cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:unix:*:*","cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:aix:*:*","cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:windows:*:*","cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:zos:*:*","cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:linux:*:*","cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:unix:*:*","cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:aix:*:*","cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:windows:*:*","cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:zos:*:*","cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:linux:*:*","cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:unix:*:*","cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:aix:*:*","cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:windows:*:*","cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:zos:*:*","cpe:2.3:a:ibm:db2:12.1.3:*:*:*:*:linux:*:*","cpe:2.3:a:ibm:db2:12.1.3:*:*:*:*:unix:*:*","cpe:2.3:a:ibm:db2:12.1.3:*:*:*:*:aix:*:*","cpe:2.3:a:ibm:db2:12.1.3:*:*:*:*:windows:*:*","cpe:2.3:a:ibm:db2:12.1.3:*:*:*:*:zos:*:*"],"defaultStatus":"unaffected","product":"Db2 for Linux, UNIX and Windows","vendor":"IBM","versions":[{"lessThanOrEqual":"11.5.9","status":"affected","version":"11.5.0","versionType":"semver"},{"lessThanOrEqual":"12.1.3","status":"affected","version":"12.1.0","versionType":"semver"}]}],"descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3&nbsp;could allow a local user to cause a denial of service when copying large table containing XML data due to improper allocation of system resources.</p>"}],"value":"IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 could allow a local user to cause a denial of service when copying large table containing XML data due to improper allocation of system resources."}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"LOCAL","availabilityImpact":"HIGH","baseScore":6.2,"baseSeverity":"MEDIUM","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-770","description":"CWE-770 Allocation of Resources Without Limits or Throttling","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"9a959283-ebb5-44b6-b705-dcc2bbced522","shortName":"ibm","dateUpdated":"2026-01-30T21:41:03.098Z"},"references":[{"tags":["vendor-advisory","patch"],"url":"https://www.ibm.com/support/pages/node/7257627"}],"solutions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<table><tbody><tr><td><strong>Release</strong></td><td><strong>Fixed in mod pack</strong></td><td><strong>APAR</strong></td><td><strong>Download URL</strong></td></tr><tr><td>V11.5</td><td>TBD</td><td><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.ibm.com/mysupport/s/defect/aCIgJ0000001tk1/dt442244\">DT442244</a></td><td><p>Special Build #66394 or later for V11.5.9 available at this link:<br><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.ibm.com/support/pages/node/7087189\">https://www.ibm.com/support/pages/node/7087189</a></p></td></tr><tr><td><p>V12.1</p><p>&nbsp;</p></td><td><p>v12.1.3</p><p>&nbsp;</p></td><td><p><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.ibm.com/mysupport/s/defect/aCIgJ0000001tk1/dt442244\">DT442244</a></p><p>&nbsp;</p></td><td><p>Special Build #72296 or later for V12.1.2 available at this link:</p><p><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.ibm.com/support/pages/db2-v1212-published-cumulative-special-build-downloads\">https://www.ibm.com/support/pages/db2-v1212-published-cumulative-special-build-downloads</a><br><br>12.1.3 Latest<br><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.ibm.com/support/pages/db2-v1213-published-cumulative-special-build-downloads\">https://www.ibm.com/support/pages/db2-v1213-published-cumulative-special-build-downloads</a></p></td></tr></tbody></table><br>"}],"value":"ReleaseFixed in mod packAPARDownload URLV11.5TBD https://www.ibm.com/support/pages/node/7087189 \n\nV12.1\n\n \n\nv12.1.3\n\n \n\n https://www.ibm.com/support/pages/db2-v1212-published-cumulative-special-build-downloads \n\n12.1.3 Latest\n https://www.ibm.com/support/pages/db2-v1213-published-cumulative-special-build-downloads"}],"source":{"discovery":"UNKNOWN"},"title":"IBM Db2 Denial of Service","x_generator":{"engine":"Vulnogram 0.5.0"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2026-02-02T17:40:35.972780Z","id":"CVE-2025-36123","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-02-02T17:40:46.365Z"}}]}}