CVE-2025-2669

IBM Db2 on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for Data versions 4.8, 5.0, 5.1, 5.2, 5.3 could allow a privileged user to perform operations and obtain sensitive information outside of their authority due to improper token validation.
References
Link Resource
https://www.ibm.com/support/pages/node/7277112 Vendor Advisory
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:ibm:db2:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:db2_warehouse:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:cloud_pak_for_data:-:*:*:*:*:*:*:*

History

30 Jun 2026, 15:46

Type Values Removed Values Added
References () https://www.ibm.com/support/pages/node/7277112 - () https://www.ibm.com/support/pages/node/7277112 - Vendor Advisory
CPE cpe:2.3:a:ibm:cloud_pak_for_data:-:*:*:*:*:*:*:*
cpe:2.3:a:ibm:db2_warehouse:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:db2:*:*:*:*:*:*:*:*
First Time Ibm db2
Ibm
Ibm cloud Pak For Data
Ibm db2 Warehouse

22 Jun 2026, 14:16

Type Values Removed Values Added
New CVE

Information

Published : 2026-06-22 14:16

Updated : 2026-06-30 15:46


NVD link : CVE-2025-2669

Mitre link : CVE-2025-2669

CVE.ORG link : CVE-2025-2669


JSON object : View

Products Affected

ibm

  • db2
  • cloud_pak_for_data
  • db2_warehouse
CWE
CWE-295

Improper Certificate Validation