CVE-2025-36093

security vulnerabilities are addressed with IBM Business Automation Insights iFixes for October 2025.

CVSS 4.8 MEDIUMEPSS 0.2%CWE-602

IBM Cloud Pak For Business Automation 25.0.0, 24.0.1, and 24.0.0 could allow an attacker to access unauthorized content or perform unauthorized actions using man in the middle techniques due to improper access controls.

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Productos afectados

IBM · Cloud Pak For Business Automation

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.ibm.com/support/pages/node/7249999