PT-2025-31248 · Ibm · Ibm Db2 For Linux

Published

2025-07-29

Updated

2025-08-25

CVE-2025-33092

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions IBM Db2 for Linux versions 12.1.0 through 12.1.2

Description IBM Db2 for Linux is susceptible to a stack-based buffer overflow within the db2fm component. This issue stems from inadequate bounds checking, potentially allowing a local user to overflow a buffer and execute arbitrary code on the system.

Recommendations Update IBM Db2 for Linux version 12.1.0 to a later version. Update IBM Db2 for Linux version 12.1.1 to a later version. Update IBM Db2 for Linux version 12.1.2 to a later version.

Fix

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-121

Related Identifiers

BDU:2025-09189

CVE-2025-33092

Affected Products

Ibm Db2 For Linux

PT-2025-31248 · Ibm · Ibm Db2 For Linux

CVE-2025-33092

Weakness Enumeration

Related Identifiers

Affected Products

References · 7