CVE-2025-36410

LOW

3.1

Descricao

IBM ApplinX 11.1 could allow an authenticated user to perform unauthorized administrative actions on the server due to server-side enforcement of client-side security.

Detalhes CVE

Pontuacao CVSS v3.13.1

SeveridadeLOW

Vetor CVSSCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

Vetor de ataqueNETWORK

ComplexidadeHIGH

Privilegios necessariosLOW

Interacao do usuarioNONE

Publicado1/20/2026

Ultima modificacao1/26/2026

Fontenvd

Avistamentos honeypot0

Produtos afetados

ibm:applinx

Fraquezas (CWE)

CWE-602

Referencias

https://www.ibm.com/support/pages/node/7257446(psirt@us.ibm.com)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.