Security Advisory

CVE-2025-36365

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-30 21:27:54

Last updated 2026-02-26 15:04:41

Assigner ibm

State PUBLISHED

Description

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5.0 - 11.5.9 and 12.1.0 - 12.1.3 under specific configuration of cataloged remote storage aliases could allow an authenticated user to execute unauthorized commands due to an authorization bypass vulnerability using a user-controlled key.

← Browse all CVEs View on cve.org ↗