CVE-2025-36116

IBM Db2 Mirror for i cross-site websocket hijacking

Description

IBM Db2 Mirror for i 7.4, 7.5, and 7.6 GUI is affected by cross-site WebSocket hijacking vulnerability. By sending a specially crafted request, an unauthenticated malicious actor could exploit this vulnerability to sniff an existing WebSocket connection to then remotely perform operations that the user is not allowed to perform.

Remediation

Solution:

  • The issues can be fixed by applying a PTF to IBM i. IBM Db2 Mirror for i releases 7.6, 7.5, and 7.4 will be fixed. The PTF numbers for 5770-DBM containing the fix for the vulnerabilities are in the following table. IBM i Release 5770-DBM PTF Numbers PTF Download Link 7.4 SJ05739   https://www.ibm.com/mysupport/s/fix-information?legacy=SJ05739 7.5 SJ05742   https://www.ibm.com/mysupport/s/fix-information?legacy=SJ05742 7.6 SJ05744   https://www.ibm.com/mysupport/s/fix-information?legacy=SJ05744 https://www.ibm.com/support/fixcentral

Category

6.3
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.03%
Vendor Advisory ibm.com
Affected: IBM Db2 Mirror for i
Published at:
Updated at:

References

Link Tags
https://www.ibm.com/support/pages/node/7240351 patch vendor advisory

Frequently Asked Questions

What is the severity of CVE-2025-36116?
CVE-2025-36116 has been scored as a medium severity vulnerability.
How to fix CVE-2025-36116?
To fix CVE-2025-36116: The issues can be fixed by applying a PTF to IBM i. IBM Db2 Mirror for i releases 7.6, 7.5, and 7.4 will be fixed. The PTF numbers for 5770-DBM containing the fix for the vulnerabilities are in the following table. IBM i Release 5770-DBM PTF Numbers PTF Download Link 7.4 SJ05739   https://www.ibm.com/mysupport/s/fix-information?legacy=SJ05739 7.5 SJ05742   https://www.ibm.com/mysupport/s/fix-information?legacy=SJ05742 7.6 SJ05744   https://www.ibm.com/mysupport/s/fix-information?legacy=SJ05744 https://www.ibm.com/support/fixcentral
Is CVE-2025-36116 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2025-36116 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2025-36116?
CVE-2025-36116 affects IBM Db2 Mirror for i.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.