PT-2025-40899 · Ibm · Ibm Standards Processing Engine
Published
2025-10-06
·
Updated
2025-10-16
·
CVE-2023-49886
CVSS v2.0
10
Critical
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
IBM Standards Processing Engine version 10.0.1.10
Description
The software contains a flaw due to unsafe Java deserialization, which could allow a remote attacker to execute arbitrary code on the system. Exploitation involves sending specially crafted input. No information is available regarding the number of potentially affected devices or real-world incidents. The vulnerability involves unsafe Java deserialization.
Recommendations
Update to a newer version to address this issue.
Fix
RCE
Deserialization of Untrusted Data
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Standards Processing Engine