← Retour aux CVEs
CVE-2025-36222
HIGH8.7
Description
IBM Fusion 2.2.0 through 2.10.1, IBM Fusion HCI 2.2.0 through 2.10.0, and IBM Fusion HCI for watsonx 2.8.2 through 2.10.0 uses insecure default configurations that could expose AMQStreams without client authentication that could allow an attacker to perform unauthorized actions.
Details CVE
Score CVSS v3.18.7
SeveriteHIGH
Vecteur CVSSCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
Vecteur d'attaqueNETWORK
ComplexiteHIGH
Privileges requisNONE
Interaction utilisateurNONE
Publie9/11/2025
Derniere modification10/2/2025
Sourcenvd
Observations honeypot0
Produits affectes
ibm:storage_fusionibm:storage_fusion_hciibm:storage_fusion_hci_for_watsonx
Faiblesses (CWE)
CWE-1188
References
https://www.ibm.com/support/pages/node/7244646(psirt@us.ibm.com)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.