How severe is CVE-2025-36185?

CVE-2025-36185 has a CVSS v3 score of 6.2 (MEDIUM).

CVE-2025-36185

Name: db2
Author: ibm

6.2MEDIUM

IBM Db2 12.1.0 through 12.1.2 for Linux, UNIX and Windows (includes Db2 Connect Server) could allow a local user to cause a denial of service due to improper neutralization of special elements in data

Published: 11/7/2025Updated: 11/18/2025

Description

IBM Db2 12.1.0 through 12.1.2 for Linux, UNIX and Windows (includes Db2 Connect Server) could allow a local user to cause a denial of service due to improper neutralization of special elements in data query logic.

AI AnalysisPowered by AI

Affected Products

ibmdb2

References

https://www.ibm.com/support/pages/node/7250487
Vendor Advisory