CVE-2025-1823

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-1823
IBM Jazz Reporting Service could allow an authenticated user on the host network to cause a denial of service using specially crafted SQL query that consumes excess memory resources.

3.5 /10

CVSS v3 : LOW

V3 Legend

Vector :

Exploitability : 2.1 / Impact : 1.4

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References
Link Resource
https://www.ibm.com/support/pages/node/7258083 Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:-:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix001:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix002:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix003:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix004:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix005:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix006:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix007:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix008:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix009:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix010:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix011:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix012:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix013:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix014:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix015:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix016:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix017:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix018:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix019:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.0.3:ifix020:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.1:-:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.1:ifix001:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.1:ifix002:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.1:ifix003:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.1:ifix004-sr1-base:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.1:ifix005:*:*:*:*:*:*
cpe:2.3:a:ibm:jazz_reporting_service:7.1:ifix006:*:*:*:*:*:*
History

No history.

Information

Published : 2026-02-04 21:15

Updated : 2026-02-12 19:41

NVD link : CVE-2025-1823

Mitre link : CVE-2025-1823

CVE.ORG link : CVE-2025-1823

JSON object : View

Products Affected

ibm

  • jazz_reporting_service
CWE
CWE-770

Allocation of Resources Without Limits or Throttling