CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-36114

IBM QRadar SOAR Plugin App 1.0.0 through 5.6.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 26.1%

CVSS Severity

CVSS v3 Score 6.5

References

https://www.ibm.com/support/pages/node/7242664

Products affected by CVE-2025-36114

Ibm » Soar Qradar Plugin App » Version: 1.0

cpe:2.3:a:ibm:soar_qradar_plugin_app:1.0
Ibm » Soar Qradar Plugin App » Version: 5.0.3

cpe:2.3:a:ibm:soar_qradar_plugin_app:5.0.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-36114

Products

Pricing

Contact Us