CVE-2025-2134Insufficient Resource Pool in IBM Jazz Reporting Service

CWE-410Insufficient Resource Pool3 documents3 sources
Severity
3.5LOWNVD
EPSS
0.0%
top 97.91%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Jazz Reporting Service
Timeline
PublishedFeb 4

Description

IBM Jazz Reporting Service could allow an authenticated user on the network to affect the system's performance using complicated queries due to insufficient resource pooling.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:LExploitability: 2.1 | Impact: 1.4

Affected Packages2 packages

CVEListV5ibm/jazz_reporting_service7.17.1iFix006+1
NVDibm/jazz_reporting_service7.0.3, 7.1+1

🔴Vulnerability Details

2
GHSA
GHSA-6qrw-r6gw-87p7: IBM Jazz Reporting Service could allow an authenticated user on the network to affect the system's performance using complicated queries due to insuff2026-02-04
CVEList
IBM Jazz Reporting Service Denial of Service2026-02-04
CVE-2025-2134 — Insufficient Resource Pool in IBM | cvebase