CVE-2026-6936 | THREATINT

Description

IBM i 7.6, 7.5, 7.4, and 7.3 s vulnerable to a denial-of-service attack due to uncontrolled recursion in the Integrated Language Environment (ILE) compiler. An authenticated attacker could exploit this vulnerability by compiling specially crafted source code containing a specific combination of statements.

PUBLISHED Reserved 2026-04-23 | Published 2026-05-27 | Updated 2026-05-27 | Assigner ibm

MEDIUM: 6.5CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Problem types

CWE-674 Uncontrolled Recursion

Product status

7.6 (semver)

affected

7.5 (semver)

affected

7.4

affected

7.3

affected

References

www.ibm.com/support/pages/node/7272908 vendor-advisory patch

cve.org (CVE-2026-6936)

nvd.nist.gov (CVE-2026-6936)

Download JSON