CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2025-1493: IBM Db2 denial of service
5.3
CVSS
Description
IBM Db2 for Linux, UNIX and Windows (includes DB2 Connect Server) 12.1.0 through 12.1.1
could allow an authenticated user to cause a denial of service due to concurrent execution of shared resources.
Classification
CVE ID: CVE-2025-1493
CVSS Base Severity: MEDIUM
CVSS Base Score: 5.3
CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Problem Types
CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')Affected Products
Vendor: IBM
Product: Db2 for Linux, UNIX and Windows
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.06% (probability of being exploited)
EPSS Percentile: 19.85% (scored less or equal to compared to others)
EPSS Date: 2025-06-03 (when was this score calculated)
References
https://nvd.nist.gov/vuln/detail/CVE-2025-1493https://www.ibm.com/support/pages/node/7232518