Ibm

Datastage

6 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2025-13686

  • EPSS 0.04%
  • Veröffentlicht 03.03.2026 20:51:45
  • Zuletzt bearbeitet 04.03.2026 03:51:31

IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 could allow an authenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user supplied input through the job subroutine component.

8.8

CVE-2025-13687

  • EPSS 0.04%
  • Veröffentlicht 03.03.2026 20:45:55
  • Zuletzt bearbeitet 04.03.2026 03:49:27

IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 could allow an authenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user supplied input through the user-defined function comp...

7.5

CVE-2025-13616

  • EPSS 0.03%
  • Veröffentlicht 03.03.2026 19:53:22
  • Zuletzt bearbeitet 04.03.2026 14:06:37

IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 returns sensitive information in an HTTP response that could be used in further attacks against the system.

8.8

CVE-2025-13689

  • EPSS 0.03%
  • Veröffentlicht 17.02.2026 22:26:20
  • Zuletzt bearbeitet 20.02.2026 16:47:33

IBM DataStage on Cloud Pak for Data could allow an authenticated user to execute arbitrary commands and gain access to sensitive information due to unrestricted file uploads.

6.5

CVE-2025-13691

  • EPSS 0.04%
  • Veröffentlicht 17.02.2026 20:17:24
  • Zuletzt bearbeitet 20.02.2026 21:03:01

IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 returns sensitive information in an HTTP response that could be used to impersonate other users in the system.

4.9

CVE-2022-38714

  • EPSS 0.04%
  • Veröffentlicht 12.02.2024 18:15:08
  • Zuletzt bearbeitet 18.03.2025 20:15:16

IBM DataStage on Cloud Pak for Data 4.0.6 to 4.5.2 stores sensitive credential information that can be read by a privileged user. IBM X-Force ID: 235060.