CVE Catalog

CVE-2025-36333

MediumCVSS 4.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.28%

20th percentile — higher than 20% of all known CVEs

Summary

A vulnerability in IBM watsonx.data intelligence versions 5.2.0, 5.2.1, 5.2.2, and 5.3.0 allows an authenticated user to perform unauthorized actions due to improper enforcement of behavioral workflow.

Risk Assessment

The risk is that an authenticated user may bypass business constraints and perform operations they are not authorized for, potentially leading to data integrity violations or unauthorized access.

Recommendation

It is recommended to immediately upgrade IBM watsonx.data intelligence to the latest patched version and implement additional access controls for authenticated users.

Original NVD description (English source)

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow an authenticated user to perform unauthorized actions due to the improper enforcement of behavioral workflow.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS