关键漏洞信息 安全公告: IBM Cognos Analytics Certified Containers is affected by security vulnerabilities - 产品: IBM Cognos Analytics - CVE ID: CVE-2022-31197 - 严重性: Medium - 发布时间: 2025-11-07 安全公告: IBM Watson Speech Services Cartridge is vulnerable to multiple Operator package issues - 产品: IBM Watson Speech Services Cartridge - CVE ID: CVE-2022-29458 - 严重性: Medium - 发布时间: 2025-11-07 安全公告: IBM Watson Speech Services Cartridge is vulnerable to multiple Base OS issues - 产品: IBM Watson Speech Services Cartridge - CVE ID: CVE-2022-29458 - 严重性: Medium - 发布时间: 2025-11-07 安全公告: IBM® Db2® is vulnerable to a denial of service due to the database monitor script incorrectly detecting that the instance is still starting under specific conditions (CVE-2025-36136) - 产品: Db2 for Linux, UNIX and Windows - CVE ID: CVE-2025-36136 - 严重性: Medium - 发布时间: 2025-11-07 安全公告: IBM® Db2® is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query (CVE-2025-2534) - 产品: Db2 for Linux, UNIX and Windows - CVE ID: CVE-2025-2534 - 严重性: Medium - 发布时间: 2025-11-07 安全公告: IBM® Db2® is vulnerable to a denial of service due to improper neutralization of special elements in data query logic (CVE-2025-36185) - 产品: Db2 for Linux, UNIX and Windows - CVE ID: CVE-2025-36185 - 严重性: Medium - 发布时间: 2025-11-07 安全公告: IBM® Db2® is vulnerable to privilege escalation under specific configurations (CVE-2025-36186) - 产品: Db2 for Linux, UNIX and Windows - CVE ID: CVE-2025-36186 - 严重性: High - 发布时间: 2025-11-07 安全公告: IBM® Db2® is vulnerable to information disclosure and credential exposure to privileged users under specific conditions (CVE-2025-36131) - 产品: Db2 for Linux, UNIX and Windows - CVE ID: CVE-2025-36131 - 严重性: Medium - 发布时间: 2025-11-07 安全公告: IBM® Db2® federated Server is vulnerable to sensitive information disclosure under specific conditions (PRISMA-2021-0055) - 产品: Db2 for Linux, UNIX and Windows - 严重性: Low - 发布时间: 2025-11-07 安全公告: IBM® Db2® is vulnerable to a denial of service due to improper allocation of resources (CVE-2025-36008) - 产品: Db2 for Linux, UNIX and Windows - CVE ID: CVE-2025-36008 - 严重性: Medium - 发布时间: 2025-11-07