CVE-2025-33132

Summary

IBM DB2 High Performance Unload 6.1.0.3, 5.1.0.1, 6.1.0.2, 6.5, 6.5.0.0 IF1, 6.1.0.1, 6.1, and 5.1 could allow an authenticated user to cause the program to crash due to the incorrect calculation of the size of the data that is being pointed to.

Affected Software

VendorProductVersion RangeStatus
IBMDB2 High Performance Unload6.1.0.3affected
IBMDB2 High Performance Unload5.1.0.1affected
IBMDB2 High Performance Unload6.1.0.2affected
IBMDB2 High Performance Unload6.5affected
IBMDB2 High Performance Unload6.5.0.0 IF1affected
IBMDB2 High Performance Unload6.1.0.1affected
IBMDB2 High Performance Unload6.1affected
IBMDB2 High Performance Unload5.1affected

Weaknesses

  • CWE-467: CWE-467 Use of sizeof() on a Pointer Type

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References