Vulnerability-Lookup

CVE-2025-25193 (GCVE-0-2025-25193)

Vulnerability from cvelistv5 – Published: 2025-02-10 22:02 – Updated: 2025-02-21 18:03

Title

Denial of Service attack on windows app using Netty

Summary

Netty, an asynchronous, event-driven network application framework, has a vulnerability in versions up to and including 4.1.118.Final. An unsafe reading of environment file could potentially cause a denial of service in Netty. When loaded on an Windows application, Netty attempts to load a file that does not exist. If an attacker creates such a large file, the Netty application crash. A similar issue was previously reported as CVE-2024-47535. This issue was fixed, but the fix was incomplete in that null-bytes were not counted against the input limit. Commit d1fbda62d3a47835d3fb35db8bd42ecc205a5386 contains an updated fix.

Severity

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: poc Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-400 - Uncontrolled Resource Consumption

Assigner

GitHub_M

References

3 references

URL	Tags
https://github.com/netty/netty/security/advisorie…	x_refsource_CONFIRM
https://github.com/netty/netty/commit/d1fbda62d3a…	x_refsource_MISC
https://security.netapp.com/advisory/ntap-2025022…

Impacted products

1 product

Vendor	Product	Version
netty	netty	Affected: <= 4.1.118

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-25193",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-02-11T15:22:08.933112Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-02-11T15:22:12.545Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "exploit"
            ],
            "url": "https://github.com/netty/netty/security/advisories/GHSA-389x-839f-4rhx"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-02-21T18:03:38.211Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://security.netapp.com/advisory/ntap-20250221-0006/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "netty",
          "vendor": "netty",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c= 4.1.118"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Netty, an asynchronous, event-driven network application framework, has a vulnerability in versions up to and including 4.1.118.Final. An unsafe reading of environment file could potentially cause a denial of service in Netty. When loaded on an Windows application, Netty attempts to load a file that does not exist. If an attacker creates such a large file, the Netty application crash. A similar issue was previously reported as CVE-2024-47535. This issue was fixed, but the fix was incomplete in that null-bytes were not counted against the input limit. Commit d1fbda62d3a47835d3fb35db8bd42ecc205a5386 contains an updated fix."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-400",
              "description": "CWE-400: Uncontrolled Resource Consumption",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-02-10T22:02:17.197Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/netty/netty/security/advisories/GHSA-389x-839f-4rhx",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/netty/netty/security/advisories/GHSA-389x-839f-4rhx"
        },
        {
          "name": "https://github.com/netty/netty/commit/d1fbda62d3a47835d3fb35db8bd42ecc205a5386",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/netty/netty/commit/d1fbda62d3a47835d3fb35db8bd42ecc205a5386"
        }
      ],
      "source": {
        "advisory": "GHSA-389x-839f-4rhx",
        "discovery": "UNKNOWN"
      },
      "title": "Denial of Service attack on windows app using Netty"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2025-25193",
    "datePublished": "2025-02-10T22:02:17.197Z",
    "dateReserved": "2025-02-03T19:30:53.400Z",
    "dateUpdated": "2025-02-21T18:03:38.211Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2025-25193",
      "date": "2026-06-06",
      "epss": "0.00096",
      "percentile": "0.26542"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-25193\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2025-02-10T22:15:38.450\",\"lastModified\":\"2025-06-11T15:36:22.693\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Netty, an asynchronous, event-driven network application framework, has a vulnerability in versions up to and including 4.1.118.Final. An unsafe reading of environment file could potentially cause a denial of service in Netty. When loaded on an Windows application, Netty attempts to load a file that does not exist. If an attacker creates such a large file, the Netty application crash. A similar issue was previously reported as CVE-2024-47535. This issue was fixed, but the fix was incomplete in that null-bytes were not counted against the input limit. Commit d1fbda62d3a47835d3fb35db8bd42ecc205a5386 contains an updated fix.\"},{\"lang\":\"es\",\"value\":\"Netty, un framework de aplicaci\u00f3n de red asincr\u00f3nico y controlado por eventos, tiene una vulnerabilidad en las versiones hasta la 4.1.118.Final incluida. Una lectura no segura del archivo de entorno podr\u00eda causar una denegaci\u00f3n de servicio en Netty. Cuando se carga en una aplicaci\u00f3n de Windows, Netty intenta cargar un archivo que no existe. Si un atacante crea un archivo tan grande, la aplicaci\u00f3n Netty se bloquea. Anteriormente se inform\u00f3 de un problema similar como CVE-2024-47535. Este problema se solucion\u00f3, pero la soluci\u00f3n estaba incompleta porque los bytes nulos no se contabilizaban en el l\u00edmite de entrada. El commit d1fbda62d3a47835d3fb35db8bd42ecc205a5386 contiene una soluci\u00f3n actualizada.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netty:netty:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.1.118\",\"matchCriteriaId\":\"A71F5AEF-CB1E-41D1-A0D8-804DCF674542\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2572D17-1DE6-457B-99CC-64AFD54487EA\"}]}]}],\"references\":[{\"url\":\"https://github.com/netty/netty/commit/d1fbda62d3a47835d3fb35db8bd42ecc205a5386\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/netty/netty/security/advisories/GHSA-389x-839f-4rhx\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20250221-0006/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/netty/netty/security/advisories/GHSA-389x-839f-4rhx\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"Third Party Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://security.netapp.com/advisory/ntap-20250221-0006/\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-02-21T18:03:38.211Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-25193\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-02-11T15:22:08.933112Z\"}}}], \"references\": [{\"url\": \"https://github.com/netty/netty/security/advisories/GHSA-389x-839f-4rhx\", \"tags\": [\"exploit\"]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-02-11T15:22:04.538Z\"}}], \"cna\": {\"title\": \"Denial of Service attack on windows app using Netty\", \"source\": {\"advisory\": \"GHSA-389x-839f-4rhx\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"netty\", \"product\": \"netty\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c= 4.1.118\"}]}], \"references\": [{\"url\": \"https://github.com/netty/netty/security/advisories/GHSA-389x-839f-4rhx\", \"name\": \"https://github.com/netty/netty/security/advisories/GHSA-389x-839f-4rhx\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/netty/netty/commit/d1fbda62d3a47835d3fb35db8bd42ecc205a5386\", \"name\": \"https://github.com/netty/netty/commit/d1fbda62d3a47835d3fb35db8bd42ecc205a5386\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Netty, an asynchronous, event-driven network application framework, has a vulnerability in versions up to and including 4.1.118.Final. An unsafe reading of environment file could potentially cause a denial of service in Netty. When loaded on an Windows application, Netty attempts to load a file that does not exist. If an attacker creates such a large file, the Netty application crash. A similar issue was previously reported as CVE-2024-47535. This issue was fixed, but the fix was incomplete in that null-bytes were not counted against the input limit. Commit d1fbda62d3a47835d3fb35db8bd42ecc205a5386 contains an updated fix.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-400\", \"description\": \"CWE-400: Uncontrolled Resource Consumption\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2025-02-10T22:02:17.197Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-25193\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-21T18:03:38.211Z\", \"dateReserved\": \"2025-02-03T19:30:53.400Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2025-02-10T22:02:17.197Z\", \"assignerShortName\": \"GitHub_M\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

WID-SEC-W-2025-0638

Vulnerability from csaf_certbund - Published: 2025-03-25 23:00 - Updated: 2025-10-16 22:00

Summary

IBM WebSphere Application Server Liberty: Schwachstelle ermöglicht Denial of Service

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: IBM WebSphere Application Server ist ein J2EE-Applikationsserver.

Angriff: Ein lokaler Angreifer kann eine Schwachstelle in IBM WebSphere Application Server Liberty ausnutzen, um einen Denial of Service Angriff durchzuführen.

Betroffene Betriebssysteme: - Linux - Sonstiges - UNIX - Windows

CVE-2025-25193

Affected products

Known affected 13 products

Product	Identifier	Version
IBM WebSphere Application Server Liberty IBM / WebSphere Application Server	`cpe:/a:ibm:websphere_application_server:liberty`	Liberty
IBM SPSS Analytic Server IBM / SPSS	`cpe:/a:ibm:spss:analytic_server`	Analytic Server
IBM InfoSphere Information Server IBM	`cpe:/a:ibm:infosphere_information_server:-`	—
IBM Maximo Asset Management 7.6.1 IBM / Maximo Asset Management	`cpe:/a:ibm:maximo_asset_management:7.6.1`	7.6.1
IBM Spectrum Protect IBM	`cpe:/a:ibm:spectrum_protect:-`	—
HCL Commerce <9.0.1.16 HCL / Commerce		<9.0.1.16
HCL Commerce <9.1.18.2 HCL / Commerce		<9.1.18.2
HCL BigFix Compliance <2.0.14 HCL / BigFix		Compliance <2.0.14
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
IBM Operational Decision Manager IBM	`cpe:/a:ibm:operational_decision_manager:-`	—
IBM WebSphere Application Server Liberty 21.0.0.2-25.0.0.3 <PH65529 IBM / WebSphere Application Server		Liberty 21.0.0.2-25.0.0.3 <PH65529
IBM WebSphere Application Server Liberty <25.0.0.4 IBM / WebSphere Application Server		Liberty <25.0.0.4
Red Hat JBoss Enterprise Application Platform <7.4.21 Red Hat / JBoss Enterprise Application Platform		<7.4.21

References

16 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.ibm.com/support/pages/node/7228999	external
https://www.ibm.com/support/pages/node/7229096	external
https://www.ibm.com/support/pages/node/7229095	external
https://www.ibm.com/support/pages/node/7229755	external
https://access.redhat.com/errata/RHSA-2025:3465	external
https://www.ibm.com/support/pages/node/7229901	external
https://www.ibm.com/support/pages/node/7232032	external
https://www.ibm.com/support/pages/node/7237491	external
https://www.ibm.com/support/pages/node/7237493	external
https://www.ibm.com/support/pages/node/7237492	external
https://support.hcl-software.com/csm?id=kb_articl…	external
https://support.hcl-software.com/community?id=com…	external
https://www.ibm.com/support/pages/node/7246092	external
https://www.ibm.com/support/pages/node/7248128	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "IBM WebSphere Application Server ist ein J2EE-Applikationsserver.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann eine Schwachstelle in IBM WebSphere Application Server Liberty ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-0638 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0638.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-0638 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0638"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin vom 2025-03-25",
        "url": "https://www.ibm.com/support/pages/node/7228999"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7229096 vom 2025-03-26",
        "url": "https://www.ibm.com/support/pages/node/7229096"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7229095 vom 2025-03-26",
        "url": "https://www.ibm.com/support/pages/node/7229095"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7229755 vom 2025-04-01",
        "url": "https://www.ibm.com/support/pages/node/7229755"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:3465 vom 2025-04-01",
        "url": "https://access.redhat.com/errata/RHSA-2025:3465"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7229901 vom 2025-04-02",
        "url": "https://www.ibm.com/support/pages/node/7229901"
      },
      {
        "category": "external",
        "summary": "IBM Security Advisory",
        "url": "https://www.ibm.com/support/pages/node/7232032"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7237491 vom 2025-06-20",
        "url": "https://www.ibm.com/support/pages/node/7237491"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7237493 vom 2025-06-20",
        "url": "https://www.ibm.com/support/pages/node/7237493"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7237492 vom 2025-06-20",
        "url": "https://www.ibm.com/support/pages/node/7237492"
      },
      {
        "category": "external",
        "summary": "HCL Security Bulletin vom 2025-08-05",
        "url": "https://support.hcl-software.com/csm?id=kb_article\u0026sysparm_article=KB0122946"
      },
      {
        "category": "external",
        "summary": "HCL Advisory vom 2025-09-11",
        "url": "https://support.hcl-software.com/community?id=community_blog\u0026sys_id=c4069f633bfbe214cb0155f726e45a59"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7246092 vom 2025-09-29",
        "url": "https://www.ibm.com/support/pages/node/7246092"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7248128 vom 2025-10-16",
        "url": "https://www.ibm.com/support/pages/node/7248128"
      }
    ],
    "source_lang": "en-US",
    "title": "IBM WebSphere Application Server Liberty: Schwachstelle erm\u00f6glicht Denial of Service",
    "tracking": {
      "current_release_date": "2025-10-16T22:00:00.000+00:00",
      "generator": {
        "date": "2025-10-17T08:08:33.754+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2025-0638",
      "initial_release_date": "2025-03-25T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-03-25T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-03-26T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2025-03-31T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2025-04-01T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-04-02T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2025-04-29T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2025-06-22T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2025-08-05T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von HCL aufgenommen"
        },
        {
          "date": "2025-09-11T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von HCL aufgenommen"
        },
        {
          "date": "2025-09-29T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2025-10-16T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von IBM aufgenommen"
        }
      ],
      "status": "final",
      "version": "11"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Compliance \u003c2.0.14",
                "product": {
                  "name": "HCL BigFix Compliance \u003c2.0.14",
                  "product_id": "T046948"
                }
              },
              {
                "category": "product_version",
                "name": "Compliance 2.0.14",
                "product": {
                  "name": "HCL BigFix Compliance 2.0.14",
                  "product_id": "T046948-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:hcltech:bigfix:compliance__2.0.14"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "BigFix"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c9.0.1.16",
                "product": {
                  "name": "HCL Commerce \u003c9.0.1.16",
                  "product_id": "T019286"
                }
              },
              {
                "category": "product_version",
                "name": "9.0.1.16",
                "product": {
                  "name": "HCL Commerce 9.0.1.16",
                  "product_id": "T019286-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:hcltechsw:commerce:9.0.1.16"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.1.18.2",
                "product": {
                  "name": "HCL Commerce \u003c9.1.18.2",
                  "product_id": "T045896"
                }
              },
              {
                "category": "product_version",
                "name": "9.1.18.2",
                "product": {
                  "name": "HCL Commerce 9.1.18.2",
                  "product_id": "T045896-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:hcltechsw:commerce:9.1.18.2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Commerce"
          }
        ],
        "category": "vendor",
        "name": "HCL"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "IBM InfoSphere Information Server",
            "product": {
              "name": "IBM InfoSphere Information Server",
              "product_id": "T035705",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:infosphere_information_server:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "7.6.1",
                "product": {
                  "name": "IBM Maximo Asset Management 7.6.1",
                  "product_id": "389168",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:maximo_asset_management:7.6.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Maximo Asset Management"
          },
          {
            "category": "product_name",
            "name": "IBM Operational Decision Manager",
            "product": {
              "name": "IBM Operational Decision Manager",
              "product_id": "T005180",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:operational_decision_manager:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "IBM QRadar SIEM",
            "product": {
              "name": "IBM QRadar SIEM",
              "product_id": "T021415",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:qradar_siem:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Analytic Server",
                "product": {
                  "name": "IBM SPSS Analytic Server",
                  "product_id": "T011789",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:spss:analytic_server"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SPSS"
          },
          {
            "category": "product_name",
            "name": "IBM Spectrum Protect",
            "product": {
              "name": "IBM Spectrum Protect",
              "product_id": "T013661",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:spectrum_protect:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "Liberty",
                "product": {
                  "name": "IBM WebSphere Application Server Liberty",
                  "product_id": "T008337",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:websphere_application_server:liberty"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Liberty \u003c25.0.0.4",
                "product": {
                  "name": "IBM WebSphere Application Server Liberty \u003c25.0.0.4",
                  "product_id": "T042154"
                }
              },
              {
                "category": "product_version",
                "name": "Liberty 25.0.0.4",
                "product": {
                  "name": "IBM WebSphere Application Server Liberty 25.0.0.4",
                  "product_id": "T042154-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:websphere_application_server:liberty__25.0.0.4"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Liberty 21.0.0.2-25.0.0.3 \u003cPH65529",
                "product": {
                  "name": "IBM WebSphere Application Server Liberty 21.0.0.2-25.0.0.3 \u003cPH65529",
                  "product_id": "T042164"
                }
              },
              {
                "category": "product_version",
                "name": "Liberty 21.0.0.2-25.0.0.3 PH65529",
                "product": {
                  "name": "IBM WebSphere Application Server Liberty 21.0.0.2-25.0.0.3 PH65529",
                  "product_id": "T042164-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:websphere_application_server:liberty_21.0.0.2_-_25.0.0.3__ph65529"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "WebSphere Application Server"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c7.4.21",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform \u003c7.4.21",
                  "product_id": "T042265"
                }
              },
              {
                "category": "product_version",
                "name": "7.4.21",
                "product": {
                  "name": "Red Hat JBoss Enterprise Application Platform 7.4.21",
                  "product_id": "T042265-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7.4.21"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "JBoss Enterprise Application Platform"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-25193",
      "product_status": {
        "known_affected": [
          "T008337",
          "T011789",
          "T035705",
          "389168",
          "T013661",
          "T019286",
          "T045896",
          "T046948",
          "T021415",
          "T005180",
          "T042164",
          "T042154",
          "T042265"
        ]
      },
      "release_date": "2025-03-25T23:00:00.000+00:00",
      "title": "CVE-2025-25193"
    }
  ]
}

WID-SEC-W-2025-0938

Vulnerability from csaf_certbund - Published: 2025-05-05 22:00 - Updated: 2025-07-15 22:00

Summary

IBM DB2: Mehrere Schwachstellen ermöglichen Denial of Service

Severity

Mittel

Notes

Produktbeschreibung: IBM DB2 ist ein relationales Datenbanksystem (RDBS) von IBM.

Angriff: Ein entfernter, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in IBM DB2 ausnutzen, um einen Denial of Service Angriff durchzuführen.

Betroffene Betriebssysteme: - Linux - UNIX - Windows

CVE-2025-0915

Affected products

Known affected 4 products

Product	Identifier	Version
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM DB2 V11.5 <Special Build 55285 IBM / DB2		V11.5 <Special Build 55285
IBM DB2 V12.1 <Special Build 54779 IBM / DB2		V12.1 <Special Build 54779

CVE-2025-1000

Affected products

Known affected 4 products

Product	Identifier	Version
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM DB2 V11.5 <Special Build 55285 IBM / DB2		V11.5 <Special Build 55285
IBM DB2 V12.1 <Special Build 54779 IBM / DB2		V12.1 <Special Build 54779

CVE-2025-1493

Affected products

Known affected 4 products

Product	Identifier	Version
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM DB2 V11.5 <Special Build 55285 IBM / DB2		V11.5 <Special Build 55285
IBM DB2 V12.1 <Special Build 54779 IBM / DB2		V12.1 <Special Build 54779

CVE-2025-1992

Affected products

Known affected 4 products

Product	Identifier	Version
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM DB2 V11.5 <Special Build 55285 IBM / DB2		V11.5 <Special Build 55285
IBM DB2 V12.1 <Special Build 54779 IBM / DB2		V12.1 <Special Build 54779

CVE-2024-47535

Affected products

Known affected 3 products

Product	Identifier	Version
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM DB2 V11.5 <Special Build 55285 IBM / DB2		V11.5 <Special Build 55285

CVE-2025-25193

Affected products

Known affected 3 products

Product	Identifier	Version
HCL Commerce HCL	`cpe:/a:hcltechsw:commerce:-`	—
IBM Tivoli Key Lifecycle Manager IBM	`cpe:/a:ibm:tivoli_key_lifecycle_manager:-`	—
IBM DB2 V11.5 <Special Build 55285 IBM / DB2		V11.5 <Special Build 55285

References

9 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.ibm.com/support/pages/node/7232515	external
https://www.ibm.com/support/pages/node/7232518	external
https://www.ibm.com/support/pages/node/7232528	external
https://www.ibm.com/support/pages/node/7232529	external
https://www.ibm.com/support/pages/node/7232531	external
https://www.ibm.com/support/pages/node/7237451	external
https://support.hcl-software.com/csm?id=kb_articl…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "IBM DB2 ist ein relationales Datenbanksystem (RDBS) von IBM.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in IBM DB2 ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-0938 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0938.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-0938 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0938"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin vom 2025-05-05",
        "url": "https://www.ibm.com/support/pages/node/7232515"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin vom 2025-05-05",
        "url": "https://www.ibm.com/support/pages/node/7232518"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin vom 2025-05-05",
        "url": "https://www.ibm.com/support/pages/node/7232528"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin vom 2025-05-05",
        "url": "https://www.ibm.com/support/pages/node/7232529"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin vom 2025-05-05",
        "url": "https://www.ibm.com/support/pages/node/7232531"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7237451 vom 2025-06-20",
        "url": "https://www.ibm.com/support/pages/node/7237451"
      },
      {
        "category": "external",
        "summary": "HCL Security Bulletin vom 2025-07-15",
        "url": "https://support.hcl-software.com/csm?id=kb_article\u0026sysparm_article=KB0122376"
      }
    ],
    "source_lang": "en-US",
    "title": "IBM DB2: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
    "tracking": {
      "current_release_date": "2025-07-15T22:00:00.000+00:00",
      "generator": {
        "date": "2025-07-16T07:32:00.020+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2025-0938",
      "initial_release_date": "2025-05-05T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-05-05T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-06-22T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2025-07-15T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von HCL aufgenommen"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "HCL Commerce",
            "product": {
              "name": "HCL Commerce",
              "product_id": "T019294",
              "product_identification_helper": {
                "cpe": "cpe:/a:hcltechsw:commerce:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "HCL"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "V11.5 \u003cSpecial Build 55285",
                "product": {
                  "name": "IBM DB2 V11.5 \u003cSpecial Build 55285",
                  "product_id": "T043350"
                }
              },
              {
                "category": "product_version",
                "name": "V11.5 Special Build 55285",
                "product": {
                  "name": "IBM DB2 V11.5 Special Build 55285",
                  "product_id": "T043350-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:db2:v11.5__special_build_55285"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "V12.1 \u003cSpecial Build 54779",
                "product": {
                  "name": "IBM DB2 V12.1 \u003cSpecial Build 54779",
                  "product_id": "T043351"
                }
              },
              {
                "category": "product_version",
                "name": "V12.1 Special Build 54779",
                "product": {
                  "name": "IBM DB2 V12.1 Special Build 54779",
                  "product_id": "T043351-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:db2:v12.1__special_build_54779"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "DB2"
          },
          {
            "category": "product_name",
            "name": "IBM Tivoli Key Lifecycle Manager",
            "product": {
              "name": "IBM Tivoli Key Lifecycle Manager",
              "product_id": "T026238",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:tivoli_key_lifecycle_manager:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "IBM"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-0915",
      "product_status": {
        "known_affected": [
          "T019294",
          "T026238",
          "T043350",
          "T043351"
        ]
      },
      "release_date": "2025-05-05T22:00:00.000+00:00",
      "title": "CVE-2025-0915"
    },
    {
      "cve": "CVE-2025-1000",
      "product_status": {
        "known_affected": [
          "T019294",
          "T026238",
          "T043350",
          "T043351"
        ]
      },
      "release_date": "2025-05-05T22:00:00.000+00:00",
      "title": "CVE-2025-1000"
    },
    {
      "cve": "CVE-2025-1493",
      "product_status": {
        "known_affected": [
          "T019294",
          "T026238",
          "T043350",
          "T043351"
        ]
      },
      "release_date": "2025-05-05T22:00:00.000+00:00",
      "title": "CVE-2025-1493"
    },
    {
      "cve": "CVE-2025-1992",
      "product_status": {
        "known_affected": [
          "T019294",
          "T026238",
          "T043350",
          "T043351"
        ]
      },
      "release_date": "2025-05-05T22:00:00.000+00:00",
      "title": "CVE-2025-1992"
    },
    {
      "cve": "CVE-2024-47535",
      "product_status": {
        "known_affected": [
          "T019294",
          "T026238",
          "T043350"
        ]
      },
      "release_date": "2025-05-05T22:00:00.000+00:00",
      "title": "CVE-2024-47535"
    },
    {
      "cve": "CVE-2025-25193",
      "product_status": {
        "known_affected": [
          "T019294",
          "T026238",
          "T043350"
        ]
      },
      "release_date": "2025-05-05T22:00:00.000+00:00",
      "title": "CVE-2025-25193"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-25193 (GCVE-0-2025-25193)

WID-SEC-W-2025-0638

WID-SEC-W-2025-0938

Tags

Sightings

Nomenclature