CVE-2026-1376 PUBLISHED

IBM i Denial of Service

Assigner: ibm
Reserved: 23.01.2026 Published: 17.03.2026 Updated: 17.03.2026

IBM i 7.6 could allow a remote attacker to cause a denial of service using failed authentication connections due to improper allocation of resources.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS Score: 7.5

Attack Vector	Network	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	None
Privileges Required	None	Integrity Impact	None
User Interaction	None	Availability Impact	High

CVSS 3.1

Product Status

Vendor	IBM
Product	i
Versions	Version 7.6 is affected

Solutions

Remediation/Fixes IBM strongly recommends addressing the vulnerability now. IBM i Release 5733-SC1 PTF Number(s) PTF Download Link(s) 7.6 SJ09012 https://www.ibm.com/mysupport/s/fix-information?legacy=SJ09012 IBM recommends users running unsupported versions of affected products upgrade to a supported and fixed version of affected products.

References

https://www.ibm.com/support/pages/node/7266422

Problem Types

CWE-770 Allocation of Resources Without Limits or Throttling CWE