CVE-2025-36333
MEDIUM
4.3
CVSS 3.1
Description
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow an authenticated user to perform unauthorized actions due to the improper enforcement of behavioral workflow.
Metadata
Severity & Metrics
4.3
MEDIUM CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| IBM | watsonx.data intelligence | — | 5.2.0, 5.2.1, 5.2.2, 5.3.0 |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-841 | cna | CWE-841 Improper Enforcement of Behavioral Workflow |
CVSS scores (1)
| Score | Severity | Version | Source | Vector |
|---|---|---|---|---|
| 4.3 | MEDIUM | 3.1 | cna | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N |
References (1)