CVE-2025-36070

🗓️ 30 Jan 2026 21:28:09Reported by ibmType

CVE-2025-36070 IBM Db2 denial of service when selecting from certain table types.

Reporter	Title	Published	Views	Family All 15
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities have been identified in IBM DB2 shipped with IBM WebSphere Remote Server	10 Feb 202603:19	–	ibm
IBM Security Bulletins	Security Bulletin: IBM® Db2® is vulnerable to a denial of service as a trap may occur when selecting from certain types of tables (CVE-2025-36070)	29 Jan 202615:25	–	ibm
ATTACKERKB	CVE-2025-36070	30 Jan 202621:28	–	attackerkb
Circl	CVE-2025-36070	31 Jan 202614:40	–	circl
CNNVD	IBM Db2 安全漏洞	30 Jan 202600:00	–	cnnvd
CNVD	IBM Db2 Denial of Service Vulnerability (CNVD-2026-14669)	11 Feb 202600:00	–	cnvd
Cvelist	CVE-2025-36070 IBM Db2 Denial of Service	30 Jan 202621:28	–	cvelist
EUVD	EUVD-2025-206553	31 Jan 202600:30	–	euvd
NVD	CVE-2025-36070	30 Jan 202622:15	–	nvd
OSV	UBUNTU-CVE-2025-36070	30 Jan 202622:15	–	osv

NVD

Vulners

Node

ibm db2Range11.5.0–11.5.9linux

ibm db2Range11.5.0–11.5.9unix

ibm db2Range11.5.0–11.5.9windows

ibm db2Range12.1.0–12.1.3linux

ibm db2Range12.1.0–12.1.3unix

ibm db2Range12.1.0–12.1.3windows

[
  {
    "cpes": [
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:11.5.0:*:*:*:*:zos:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:11.5.9:*:*:*:*:zos:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:12.1.0:*:*:*:*:zos:*:*",
      "cpe:2.3:a:ibm:db2:12.1.3:*:*:*:*:linux:*:*",
      "cpe:2.3:a:ibm:db2:12.1.3:*:*:*:*:unix:*:*",
      "cpe:2.3:a:ibm:db2:12.1.3:*:*:*:*:aix:*:*",
      "cpe:2.3:a:ibm:db2:12.1.3:*:*:*:*:windows:*:*",
      "cpe:2.3:a:ibm:db2:12.1.3:*:*:*:*:zos:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Db2 for Linux, UNIX and Windows",
    "vendor": "IBM",
    "versions": [
      {
        "lessThanOrEqual": "11.5.9",
        "status": "affected",
        "version": "11.5.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "12.1.3",
        "status": "affected",
        "version": "12.1.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7257624

05 Feb 2026 20:03Current

5.9Medium risk

Vulners AI Score5.9

CVSS 3.16.5 - 7.5

EPSS0.00042

SSVC

CWE-770