MEDIUM🇵🇱 Wersja polska

CVE-2025-36093

CVSS 4.8v3.1pub. 2025-11-03upd. 2025-11-05

IBM Cloud Pak For Business Automation 25.0.0, 24.0.1, and 24.0.0 could allow an attacker to access unauthorized content or perform unauthorized actions using man in the middle techniques due to improper access controls.

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
  • IBM Cloud Pak For Business Automation

    APP
    Ibm
    24.0.024.0.125.0.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2023-35899HIGH7.0ten sam produkt

IBM Cloud Pak for Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 2...

CVE-2025-36094MEDIUM5.4ten sam produkt

IBM Cloud Pak for Business Automation 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 24.0.1 Interim Fix...

CVE-2025-36436MEDIUM6.4ten sam produkt

IBM Cloud Pak for Business Automation 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 24.0.1 Interim Fix...

CVE-2025-36091MEDIUM4.3ten sam produkt

IBM Cloud Pak For Business Automation 25.0.0, 24.0.1, and 24.0.0 could allow an authenticated user to cause da...

CVE-2025-36092MEDIUM6.5ten sam produkt

IBM Cloud Pak For Business Automation 25.0.0, 24.0.1, and 24.0.0 could allow an authenticated user to cause a ...