7.2
CVE-2025-36048
- EPSS 0.51%
- Veröffentlicht 18.06.2025 16:15:27
- Zuletzt bearbeitet 13.08.2025 14:12:38
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
IBM webMethods Integration Sever code execution
IBM webMethods Integration Server 10.5, 10.7, 10.11, and 10.15 could allow a privileged user to escalate their privileges when handling external entities due to execution with unnecessary privileges.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Webmethods Integration Version10.5
Apple ≫ macOS Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-
Novell ≫ Suse Linux Version-
Redhat ≫ Linux Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-
Novell ≫ Suse Linux Version-
Redhat ≫ Linux Version-
Ibm ≫ Webmethods Integration Version10.7
Apple ≫ macOS Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-
Novell ≫ Suse Linux Version-
Redhat ≫ Linux Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-
Novell ≫ Suse Linux Version-
Redhat ≫ Linux Version-
Ibm ≫ Webmethods Integration Version10.11
Apple ≫ macOS Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-
Novell ≫ Suse Linux Version-
Redhat ≫ Linux Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-
Novell ≫ Suse Linux Version-
Redhat ≫ Linux Version-
Ibm ≫ Webmethods Integration Version10.15
Apple ≫ macOS Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-
Novell ≫ Suse Linux Version-
Redhat ≫ Linux Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-
Novell ≫ Suse Linux Version-
Redhat ≫ Linux Version-
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.51% | 0.665 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@us.ibm.com | 7.2 | 1.2 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
|
CWE-250 Execution with Unnecessary Privileges
The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.