CVE-2025-3050

🗓️ 29 May 2025 19:13:06Reported by ibmType

IBM Db2 could allow denial of service due to improper CPU resource allocation in Q replication.

Reporter	Title	Published	Views	Family All 21
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM® Db2® affect IBM® Db2® Big SQL	23 Jan 202610:25	–	ibm
IBM Security Bulletins	Security Bulletin: Due to the use of IBM Db2, IBM Cloud Pak System is affected by multiple vulnerabilities	25 Jun 202619:25	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to tampering and elevation of privilege (CVE-2025-30065) due to the use of IBM Db2	21 Jul 202523:55	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM Db2 may affect IBM Storage Protect Server.	5 Dec 202513:42	–	ibm
IBM Security Bulletins	Security Bulletin: There are multiple vulnerabilities in IBM DB2 bundled with IBM Application Performance Management products.	18 Jul 202508:11	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities have been identified in IBM Db2 shipped with IBM Security Guardium Key Lifecycle Manager	20 Jun 202513:41	–	ibm
IBM Security Bulletins	Security Bulletin: IBM® Db2® is vulnerable to a denial of service under certain conditions (CVE-2025-3050).	23 Jul 202514:45	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities have been identified in IBM Db2 shipped with IBM WebSphere Remote Server	27 Jun 202521:16	–	ibm
BDU FSTEC	The vulnerability of the Q Replication technology in the IBM DB2 database management system and IBM DB2 Connect Server allows a attacker to cause service interruptions.	9 Jun 202500:00	–	bdu_fstec
Circl	CVE-2025-3050	29 May 202520:05	–	circl

NVD

Vulners

Node

ibm db2Range11.5–11.5.9linux

ibm db2Range11.5–11.5.9unix

ibm db2Range11.5–11.5.9windows

ibm db2Range12.1.0–12.1.1linux

ibm db2Range12.1.0–12.1.1unix

ibm db2Range12.1.0–12.1.1windows

[
  {
    "cpes": [
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:zos:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:zos:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:zos:*:*",
      "cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:12.1.1:*:*:*:*:zos:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Db2 for Linux, UNIX and Windows",
    "vendor": "IBM",
    "versions": [
      {
        "lessThanOrEqual": "11.5.9",
        "status": "affected",
        "version": "11.5.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "12.1.1",
        "status": "affected",
        "version": "12.1.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7235073

17 Jun 2026 09:19Current

5.3Medium risk

Vulners AI Score5.3

CVSS 3.15.3 - 6.5

EPSS0.00303

SSVC

CWE-770