PT-2026-5897 · Ibm · Ibm Cloud Pak For Business Automation
Published
2026-02-03
·
Updated
2026-02-25
·
CVE-2025-36094
CVSS v3.1
8.1
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
IBM Cloud Pak for Business Automation versions 25.0.0 through 25.0.0 Interim Fix 002
IBM Cloud Pak for Business Automation versions 24.0.1 through 24.0.1 Interim Fix 005
IBM Cloud Pak for Business Automation versions 24.0.0 through 24.0.0 Interim Fix 007
Description
The software contains an issue where improper validation of input length can lead to a denial of service or data corruption. This affects authenticated users.
Recommendations
Update IBM Cloud Pak for Business Automation to a version beyond 25.0.0 Interim Fix 002.
Update IBM Cloud Pak for Business Automation to a version beyond 24.0.1 Interim Fix 005.
Update IBM Cloud Pak for Business Automation to a version beyond 24.0.0 Interim Fix 007.
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Cloud Pak For Business Automation