What is GHSA-vhw4-7vwf-ww45?

GHSA-vhw4-7vwf-ww45 is a security advisory published by GitHub Security Advisories with Medium severity. IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows (includes...

Which CVE IDs does GHSA-vhw4-7vwf-ww45 cover?

GHSA-vhw4-7vwf-ww45 covers the following CVE IDs: CVE-2025-13755. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-vhw4-7vwf-ww45?

GHSA-vhw4-7vwf-ww45 has a CVSS v3 base score of 5.5, published by GitHub Security Advisories.

GHSA-vhw4-7vwf-ww45MediumCVSS 5.5

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows (includes...

Vendor

GitHub Security Advisories

Published

May 26, 2026

Last Modified

May 26, 2026

🔗 CVE IDs covered (1)

CVE-2025-13755 →

📋 Description

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows (includes DB2 Connect Server) stores potentially sensitive information in log files that could be read by a local user.

🔗 References (3)

https://nvd.nist.gov/vuln/detail/CVE-2025-13755
https://www.ibm.com/support/pages/node/7273554
https://github.com/advisories/GHSA-vhw4-7vwf-ww45