CVE-2025-1000

🗓️ 05 May 2025 20:55:46Reported by ibmType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 70 Views

IBM Db2 vulnerability allows authenticated users to cause denial of service via client rerouting issues.

Reporter	Title	Published	Views	Family All 16
IBM Security Bulletins	Security Bulletin: Due to the use of IBM Db2, IBM Cloud Pak System is affected by multiple vulnerabilities	6 Nov 202511:55	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Db2 may affect IBM Storage Protect Server.	5 Dec 202513:42	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM Db2 shipped with IBM Security Guardium Key Lifecycle Manager	20 Jun 202513:41	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities have been identified in IBM Db2 shipped with IBM WebSphere Remote Server	27 Jun 202521:16	–	ibm
IBM Security Bulletins	Security Bulletin: IBM® Db2® is vulnerable to a denial of service when connecting to a z/OS database. (CVE-2025-1000)	23 Jul 202515:03	–	ibm
Circl	CVE-2025-1000	5 May 202521:20	–	circl
CNNVD	IBM Db2 安全漏洞	5 May 202500:00	–	cnnvd
Cvelist	CVE-2025-1000 IBM Db2 denial of service	5 May 202520:55	–	cvelist
Tenable Nessus	IBM DB2 Multiple Vulnerabilities (7232529, 7232528) (Unix)	13 May 202500:00	–	nessus
Tenable Nessus	IBM DB2 Multiple Vulnerabilities (7232529, 7232528) (Windows)	13 May 202500:00	–	nessus

NVD

Vulners

Node

ibm db2Range11.5–11.5.9linux

ibm db2Range11.5–11.5.9unix

ibm db2Range11.5–11.5.9windows

ibm db2Range12.1.0–12.1.1linux

ibm db2Range12.1.0–12.1.1unix

ibm db2Range12.1.0–12.1.1windows

[
  {
    "cpes": [
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:zos:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:zos:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:zos:*:*",
      "cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:zos:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Db2 for Linux, UNIX and Windows",
    "vendor": "IBM",
    "versions": [
      {
        "lessThanOrEqual": "11.5.9",
        "status": "affected",
        "version": "11.5.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "12.1.1",
        "status": "affected",
        "version": "12.1.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7232528
security	www.security.netapp.com/advisory/ntap-20250516-0002/

17 Jun 2026 08:38Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.15.3 - 6.5

EPSS0.00315

SSVC

CWE-770