IBM Db2 denial of service
Description
IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 federated server is vulnerable to a denial of service as the server may crash when using a specially crafted wrapper using certain options. IBM X-Force ID: 253202.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
IBM Db2 federated server (11.1 and 11.5) can crash via a specially crafted wrapper, leading to denial of service.
Vulnerability
IBM Db2 for Linux, UNIX and Windows (including Db2 Connect Server) versions 11.1.4.7 and 11.5.x are affected. The federated server may crash when using a specially crafted wrapper with certain options [1].
Exploitation
An attacker with network access and no authentication can exploit this by providing a specially crafted wrapper to the federated server. The attack complexity is high, but no user interaction is required [1].
Impact
Successful exploitation causes the federated server to crash, resulting in a denial of service. There is no impact on confidentiality or integrity [1].
Mitigation
IBM has released special builds containing an interim fix for this issue. Affected customers can download the special build for V11.1.4 FP7 or V11.5.8 (available for V11.5.7) from Fix Central [1].
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: 11.1, 11.5
- Range: 11.1, 11.5
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- www.ibm.com/support/pages/node/7010561mitrevendor-advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/253202mitrevdb-entry
- security.netapp.com/advisory/ntap-20230731-0007/mitre
News mentions
0No linked articles in our index yet.