CVE-2025-36354
Essential information
- Published
- 06/10/2025 17:16
- Modified
- 06/10/2025 17:16
- Author
- —
- Creator
- —
- CVSS
- 7.3 HIGH (v3.1)
- CISA KEV
- No
- CWE
- —
- CVSS vector
-
—
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L—
CVSS metrics
- Access vector
- —
- Access complexity
- —
- Authentication
- —
- Confidentiality impact
- —
- Integrity impact
- —
- Availability impact
- —
- Exploitability
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- NETWORK
- Attack complexity
- LOW
- Privileges required
- NONE
- User interaction
- NONE
- Scope
- UNCHANGED
- Confidentiality impact
- LOW
- Integrity impact
- LOW
- Availability impact
- LOW
- Exploit code maturity
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- —
- Attack complexity
- —
- Attack requirements
- —
- Privileges required
- —
- User interaction
- —
- Confidentiality (V)
- —
- Confidentiality (S)
- —
- Integrity (V)
- —
- Integrity (S)
- —
- Availability (V)
- —
- Availability (S)
- —
- Exploit maturity
- —
Description
IBM Security Verify Access and IBM Security Verify Access Docker 10.0.0.0 through 10.0.9.0 and 11.0.0.0 through 11.0.1.0
could allow an unauthenticated user to execute arbitrary commands with lower user privileges on the system due to improper validation of user supplied input.
NVD status
- Status
- Received — CVE has been recently published to the CVE List and has been received by the NVD.
- Source
- [email protected]
- NVD
- View on NVD
Affected products (CPE)
| Product | CPE |
|---|---|
| ibm / ibm security verify access | cpe:2.3:a:ibm:ibm_security_verify_access:10.0.0.0-10.0.9.0:*:*:*:*:*:*:* |
| ibm / ibm security verify access | cpe:2.3:a:ibm:ibm_security_verify_access:11.0.0.0-11.0.1.0:*:*:*:*:*:*:* |
| ibm / ibm security verify access docker | cpe:2.3:a:ibm:ibm_security_verify_access_docker:10.0.0.0-10.0.9.0:*:*:*:*:*:*:* |
| ibm / ibm security verify access docker | cpe:2.3:a:ibm:ibm_security_verify_access_docker:11.0.0.0-11.0.1.0:*:*:*:*:*:*:* |