← Volver a CVEs
CVE-2025-36058
MEDIUM5.5
Descripcion
IBM Business Automation Workflow containers 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 24.0.1 Interim Fix 005, and 24.0.0 through 24.0.0 Interim Fix 006. IBM Cloud Pak for Business Automation and IBM Business Automation Workflow containers may disclose sensitve configuration information in a config map.
Detalles CVE
Puntuacion CVSS v3.15.5
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vector de ataqueLOCAL
ComplejidadLOW
Privilegios requeridosLOW
Interaccion usuarioNONE
Publicado1/20/2026
Ultima modificacion2/17/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
ibm:business_automation_workflow
Debilidades (CWE)
CWE-538
Referencias
https://www.ibm.com/support/pages/node/7256777(psirt@us.ibm.com)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.