CVE-2025-36333

MEDIUM

Vulnerabilities found in Watson Data Intelligence

Title source: cna
STIX 2.1

Description

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow an authenticated user to perform unauthorized actions due to the improper enforcement of behavioral workflow.

References (1)

Core 1
Core References
Vendor Advisory vendor-advisory patch
https://www.ibm.com/support/pages/node/7277801

Scores

CVSS v3 4.3
EPSS 0.0028
EPSS Percentile 20.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-841
Status published
Products (2)
IBM/watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0
ibm/watsonx.data_intelligence
Published Jun 30, 2026
Tracked Since Jul 01, 2026