{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-26T14:26:23.544","vulnerabilities":[{"cve":{"id":"CVE-2025-1992","sourceIdentifier":"psirt@us.ibm.com","published":"2025-05-05T17:18:46.867","lastModified":"2026-06-17T08:40:29.643","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 11.5.0 through 11.5.9 and 12.1.0 through 12.1.1 could allow an authenticated user in federation environment, to cause a denial of service due to insufficient release of allocated memory after usage."},{"lang":"es","value":"IBM Db2 para Linux, UNIX y Windows (incluye DB2 Connect Server) 11.5.0 a 11.5.9 y 12.1.0 a 12.1.1 podría permitir que un usuario autenticado, bajo configuraciones no predeterminadas, provoque una denegación de servicio debido a una liberación insuficiente de memoria asignada después del uso."}],"affected":[{"source":"psirt@us.ibm.com","affectedData":[{"vendor":"IBM","product":"Db2 for Linux, UNIX and Windows","defaultStatus":"unaffected","cpes":["cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:linux:*:*","cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:unix:*:*","cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:aix:*:*","cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:windows:*:*","cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:zos:*:*","cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:linux:*:*","cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:unix:*:*","cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:aix:*:*","cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:windows:*:*","cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:zos:*:*","cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:linux:*:*","cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:unix:*:*","cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:aix:*:*","cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:windows:*:*","cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:zos:*:*","cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:linux:*:*","cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:unix:*:*","cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:aix:*:*","cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:windows:*:*","cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:zos:*:*"],"versions":[{"version":"11.5.0","lessThanOrEqual":"11.5.9","versionType":"semver","status":"affected"},{"version":"12.1.0","lessThanOrEqual":"12.1.1","versionType":"semver","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.6,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-05-05T17:14:04.504342Z","id":"CVE-2025-1992","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Secondary","description":[{"lang":"en","value":"CWE-401"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:db2:*:*:*:*:-:*:*:*","versionStartIncluding":"11.5.0","versionEndIncluding":"11.5.9","matchCriteriaId":"210F96C9-B756-434F-8F82-CC7834829F43"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:db2:12.1.0:*:*:*:-:*:*:*","matchCriteriaId":"548CA0C3-17A4-40E4-8097-2062DA369C24"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:db2:12.1.1:*:*:*:-:*:*:*","matchCriteriaId":"0524B48C-8AFB-4F47-B1BD-92C882FA99DA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*","matchCriteriaId":"703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"},{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"},{"vulnerable":false,"criteria":"cpe:2.3:o:opengroup:unix:-:*:*:*:*:*:*:*","matchCriteriaId":"6A90CB3A-9BE7-475C-9E75-6ECAD2106302"}]}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7232515","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20250516-0002/","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}