← Volver a CVEs
CVE-2025-36222
HIGH8.7
Descripcion
IBM Fusion 2.2.0 through 2.10.1, IBM Fusion HCI 2.2.0 through 2.10.0, and IBM Fusion HCI for watsonx 2.8.2 through 2.10.0 uses insecure default configurations that could expose AMQStreams without client authentication that could allow an attacker to perform unauthorized actions.
Detalles CVE
Puntuacion CVSS v3.18.7
SeveridadHIGH
Vector CVSSCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
Vector de ataqueNETWORK
ComplejidadHIGH
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado9/11/2025
Ultima modificacion10/2/2025
Fuentenvd
Avistamientos honeypot0
Productos afectados
ibm:storage_fusionibm:storage_fusion_hciibm:storage_fusion_hci_for_watsonx
Debilidades (CWE)
CWE-1188
Referencias
https://www.ibm.com/support/pages/node/7244646(psirt@us.ibm.com)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.