CVE-2025-33012HIGH 8.8EPSS p3.6%

CVE-2025-33012CVE-2025-33012

Description

IBM Db2 10.5.0 through 10.5.11, 11.1.0 through 11.1.4.7, 11.5.0 through 11.5.9, and 12.1.0 through 12.1.3 for Linux could allow an authenticated user to regain access after account lockout due to password use after expiration date.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS0.14% probability of exploitation · percentile 3.6% · 2026-06-19T12:03:05Z
Published2025-11-07
Last modified2025-11-19

Underlying weaknesses· 1

CWE-324

References

  1. https://www.ibm.com/support/pages/node/7250469

1

TypeTargetConfidenceTier
WeaknessUse of a Key Past its Expiration Datecwe-3240%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-1718
CVE
CVE-2025-33109
CVE
CVE-2026-3676
CVE
CVE-2025-2291
CVE
CVE-2025-36247
CVE
CVE-2025-33005
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.