CVE-2026-6938

IBM® Db2® is vulnerable to authorization bypass when uploading to a remote object storage path with a special query

Assigner: ibm
Reserved: 23.04.2026 Published: 27.05.2026 Updated: 27.05.2026

IBM Db2 12.1.0 through 12.1.4 is vulnerable to authorization bypass when uploading to a remote object storage path with a special query.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
CVSS Score: 6.5

Attack Vector	Network	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	None
Privileges Required	Low	Integrity Impact	High
User Interaction	None	Availability Impact	None

CVSS 3.1

Product Status

Vendor	IBM
Product	Db2
Versions	affected from 12.1.0 to 12.1.4 (incl.)

Vendor

IBM

Product

Db2

Versions

affected from 12.1.0 to 12.1.4 (incl.)

Workarounds

Use LOAD COPY command db2 load from test.del of del replace into t1 copy yes to 'DB2REMOTE://'. Instead of the LOAD COPY via the regvar DB2_LOAD_COPY_NO_OVERRIDE

Solutions

Customers running any vulnerable affected level of an affected Program, V12.1, can download the special build containing the interim fix for this issue from Fix Central. These special builds are available based on the most recent level for each impacted release: V12.1.4. They can be applied to any affected level of the appropriate release to remediate this vulnerability.

ReleaseFixed in mod packAPARDownload URL

V12.1

TBD

https://www.ibm.com/support/pages/node/7267513

IBM does not disclose key Db2 functionality nor replication steps for a vulnerability to avoid providing too much information to any potential malicious attacker. IBM does not want to enable a malicious attacker with sufficient knowledge to craft an exploit of the vulnerability.

References

Problem Types

CWE-285 Improper Authorization CWE