关键漏洞信息 CVEID: CVE-2025-36006 Description: IBM Db2 for Linux, UNIX, and Windows (including Db2 Connect Server) could allow an authenticated user to cause a denial of service due to the improper release of resources after use. CWE: CWE-404: Improper Resource Shutdown or Release CVSS Score: Base Score: 6.5 Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H) Affected Products and Versions: Remediation/Fixes: Customers can download special builds containing interim fixes from Fix Central. Available builds are specifically for versions V10.5, V11.1, V11.5, and V12.1, based on the most recent level for each impacted release. Workarounds and Mitigations: For JCC applications: Set property to 2 for connections. For CLI and ODBC applications: Set property to for statements. Manually recycle connections as needed.