CVE-2025-2134 LOW

CVE-2025-2134: IBM Jazz Reporting Service Denial of Service

Vendor Ibm
Product Jazz Reporting Service
Weakness CWE-410
Published February 4, 2026
Last update February 4, 2026

CVSS base score

3.5/10
Attack vector Adjacent
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

What the vulnerability does

01Description

IBM Jazz Reporting Service could allow an authenticated user on the network to affect the system's performance using complicated queries due to insufficient resource pooling.

Key dates

02Disclosure timeline

February 4, 2026 CVE published
February 4, 2026 Record updated