Vulnerability Details CVE-2025-36023
IBM Cloud Pak for Business Automation 24.0.0 through 24.0.0 IF005 and 24.0.1 through 24.0.1 IF002 could allow an authenticated user to view sensitive user and system information due to an indirect object reference through a user-controlled key.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 6.2%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2025-36023
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0
-
cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.1