CVE-2025-1823

CWE-770Allocation without Limits3 documents3 sources
Severity
3.5LOW
EPSS
0.0%
top 97.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Jazz Reporting Service
Timeline
PublishedFeb 4

Description

IBM Jazz Reporting Service could allow an authenticated user on the host network to cause a denial of service using specially crafted SQL query that consumes excess memory resources.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:LExploitability: 2.1 | Impact: 1.4

Affected Packages2 packages

CVEListV5ibm/jazz_reporting_service7.17.1iFix006+1
NVDibm/jazz_reporting_service7.0.3, 7.1+1

🔴Vulnerability Details

2
CVEList
IBM Jazz Reporting Service Denial of Service2026-02-04
GHSA
GHSA-mrxv-5r9g-hmrr: IBM Jazz Reporting Service could allow an authenticated user on the host network to cause a denial of service using specially crafted SQL query that c2026-02-04
CVE-2025-1823 (LOW CVSS 3.5) | IBM Jazz Reporting Service could al | cvebase.io