Back to overview

CVE-2025-36333

MEDIUM
4.3
CVSS 3.1
Description
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow an authenticated user to perform unauthorized actions due to the improper enforcement of behavioral workflow.

Metadata

CVE ID
CVE-2025-36333
State
PUBLISHED
Assigner
ibm
Reserved
2025-04-15 21:16 UTC
Published
2026-06-30 20:15 UTC
Last updated
2026-06-30 20:15 UTC
Primary CWE
CWE-841
CWE-841 Improper Enforcement of Behavioral Workflow
Vendor / Product
IBM / watsonx.data intelligence
Sources
cve.org  ·  NVD

Severity & Metrics

4.3 MEDIUM CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Affected products (1)
VendorProductPlatformVersions
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0
Weakness (CWE)
CWESourceDescription
CWE-841 cna CWE-841 Improper Enforcement of Behavioral Workflow
CVSS scores (1)
ScoreSeverityVersionSourceVector
4.3 MEDIUM 3.1 cna CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Back to overview