CVE-2025-33131

Summary

IBM DB2 High Performance Unload 6.1.0.3, 5.1.0.1, 6.1.0.2, 6.5, 6.5.0.0 IF1, 6.1.0.1, 6.1, and 5.1 could allow an authenticated user to cause the program to crash due to a buffer being overwritten when it is allocated on the stack.

Affected Software

VendorProductVersion RangeStatus
IBMDB2 High Performance Unload6.1.0.3affected
IBMDB2 High Performance Unload5.1.0.1affected
IBMDB2 High Performance Unload6.1.0.2affected
IBMDB2 High Performance Unload6.5affected
IBMDB2 High Performance Unload6.5.0.0 IF1affected
IBMDB2 High Performance Unload6.1.0.1affected
IBMDB2 High Performance Unload6.1affected
IBMDB2 High Performance Unload5.1affected

Weaknesses

  • CWE-120: CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References