CVE-2025-36336
MediumCVSS 5.9Exploitation Probability (EPSS)
Low risk10th percentile — higher than 10% of all known CVEs
Summary
IBM watsonx.data intelligence versions 5.2.0, 5.2.1, 5.2.2, and 5.3.0 transmit data in clear text, allowing an attacker to obtain sensitive information using man-in-the-middle techniques.
Risk Assessment
The organization is at risk of sensitive data leakage, such as passwords or API keys, which could be intercepted by an attacker during network transmission.
Recommendation
It is recommended to immediately upgrade to the latest version of IBM watsonx.data intelligence that fixes this vulnerability and to enforce TLS encryption for all network traffic.
Original NVD description (English source)
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 transmits data in clear text that could allow an attacker to obtain sensitive information using man in the middle techniques.

