Back to overview

CVE-2025-12530

MEDIUM
5.9
CVSS 3.1
Description
IBM watsonx.data intelligence 5.2.2, 5.3.0, 5.3.1, 5.3.1 through patch-1 transmits data in clear text that could allow an attacker to obtain sensitive information using man in the middle techniques.

Metadata

CVE ID
CVE-2025-12530
State
PUBLISHED
Assigner
ibm
Reserved
2025-10-30 18:13 UTC
Published
2026-06-30 20:34 UTC
Last updated
2026-06-30 20:34 UTC
Primary CWE
CWE-319
CWE-319 Cleartext Transmission of Sensitive Information
Vendor / Product
IBM / watsonx.data intelligence
Sources
cve.org  ·  NVD

Severity & Metrics

5.9 MEDIUM CVSS 3.1
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected products (1)
VendorProductPlatformVersions
IBM watsonx.data intelligence 5.2.2, 5.3.0, 5.3.1, 5.3.1
Weakness (CWE)
CWESourceDescription
CWE-319 cna CWE-319 Cleartext Transmission of Sensitive Information
CVSS scores (1)
ScoreSeverityVersionSourceVector
5.9 MEDIUM 3.1 cna CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Back to overview