IBM Db2 11.5-12.1 MEMExhaustion via MDC Table Queries: CVE-2026-6052 May 2026

IBM® Db2® is vulnerable to running out of memory when executing certain queries with MDC tables
IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 is vulnerable to running out of memory when executing certain queries with MDC tables.

Vulnerability Analysis

CVE-2026-6052 is exploitable with network access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.

Attack Vector:

NETWORK

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

NONE

Integrity Impact:

NONE

Availability Impact:

HIGH

Weakness Type

What is a Resource Exhaustion Vulnerability?

The software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

CVE-2026-6052 has been classified to as a Resource Exhaustion vulnerability or weakness.

Products Associated with CVE-2026-6052

Want to know whenever a new CVE is published for IBM Db2? stack.watch will email you.

IBM Db2 11.5-12.1 MEMExhaustion via MDC Table Queries
CVE-2026-6052 Published on May 27, 2026

Vulnerability Analysis

Weakness Type

What is a Resource Exhaustion Vulnerability?

Products Associated with CVE-2026-6052

Affected Versions

IBM Db2 11.5-12.1 MEMExhaustion via MDC Table QueriesCVE-2026-6052 Published on May 27, 2026

Vulnerability Analysis

Weakness Type

What is a Resource Exhaustion Vulnerability?

Products Associated with CVE-2026-6052

Affected Versions

IBM Db2 11.5-12.1 MEMExhaustion via MDC Table Queries
CVE-2026-6052 Published on May 27, 2026