Vulnerability Details CVE-2025-36072
IBM webMethods Integration 10.11 through 10.11_Core_Fix22, 10.15 through 10.15_Core_Fix22, and 11.1 through 11.1_Core_Fix6 IBM webMethods Integration allow an authenticated user to execute arbitrary code on the system, caused by the deserialization of untrusted object graphs data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.2%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2025-36072
-
cpe:2.3:a:ibm:webmethods_integration:10.11
-
cpe:2.3:a:ibm:webmethods_integration:10.15
-
cpe:2.3:a:ibm:webmethods_integration:11.1