CVE-2026-6052

Summary

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to running out of memory when executing certain queries with MDC tables.

Affected Software

VendorProductVersion RangeStatus
IBMDb211.5.0 <= 11.5.9affected
IBMDb212.1.0 <= 12.1.4affected

Weaknesses

Workarounds

Do not use Multi-Clustering-Dimensional (MDC) tables

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References