Primary

Context

IBM i Database Plan Cache Information Disclosure Vulnerability

Vulnerability

A vulnerability allowing unauthorized information access has been identified in the database plan cache implementation of IBM i versions 7.2, 7.3, 7.4, 7.5, and 7.6. Users with access to the database plan cache could potentially view information without the proper authority.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure from the database plan cache.

Remediation

Users can upgrade to a supported version of IBM i. Specific PTF numbers and download links are available for each affected version on the IBM Support page.

Added: Nov 19, 2025, 8:23 PM

Updated: Nov 19, 2025, 8:23 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

4.9

remediation

7.7

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

4.9

remediation

7.7

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM i Database Plan Cache Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

IBM i

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating