CVE-2025-36185 | IBM DB2/DB2 Connect Server up to 12.1.2 data query logic injection

A vulnerability, which was classified as problematic, has been found in IBM DB2 and DB2 Connect Server up to 12.1.2. Affected by this issue is some unknown functionality. Performing manipulation results in improper neutralization of special elements in data query logic.

This vulnerability was named CVE-2025-36185. The attack needs to be approached locally. There is no available exploit.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More