CVE-2025-1137

EPSS 0.03%
Published 10.05.2025 01:56:23
Last modified 29.09.2025 16:15:37
Source psirt@us.ibm.com
Teams watchlist Login
Open Login

IBM Storage Scale 5.2.2.0 and 5.2.2.1, under certain configurations, could allow an authenticated user to execute privileged commands due to improper input neutralization.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Data is provided by the National Vulnerability Database (NVD)

Ibm ≫ Storage Scale Version5.2.2.0

Ibm ≫ Storage Scale Version5.2.2.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.03%	0.063

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
psirt@us.ibm.com	7.5	1.6	5.9	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-250 Execution with Unnecessary Privileges

The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

https://www.ibm.com/support/pages/node/7233085

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-1137

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-1137

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-1137

EUVD