CNNVD-202506-3766 Information
CNNVD ID
CNNVD-202506-3766
Related CVE
- CNNVD Published: 2025-06-30
Description (Chinese)
IBM Cloud Pak System是美国国际商业机器(IBM)公司的一套具有可配置、预集成软件的全栈、融合基础架构。该产品支持跨混合云部署、管理和移动应用程序环境。 IBM Cloud Pak System存在安全漏洞,该漏洞源于容易受到HTML注入攻击。以下版本受到影响:2.3.3.6版本、2.3.36 iFix1版本、2.3.3.7版本、2.3.3.7 iFix1版本、2.3.4.0版本、2.3.4.1版本和2.3.4.1 iFix1版本。
Description (English)
IBM Cloud Pak Systems is a fully configured, pre-integrated software, integrated infrastructure for the United States International Business Machine (IBM). The product supports a cross-mixed cloud deployment, management and mobile application environment. IBM Cloud Pak System has a security loophole that stems from its vulnerability to HTML injections. The following versions were affected: 2.3.3.6, 2.3.36 iFix1, 2.3.3.3.7, 2.3.3.3.7 iFix1, 2.3.4.0, 2.3.4.1 and 2.3.4.1 iFix1.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
国际商业机器
Published
2025-06-30
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7237164 https://access.redhat.com/security/cve/cve-2025-2895
Patch
https://www.ibm.com/support/pages/node/7237164
Share on: