CNNVD-202508-2901 Information
CNNVD ID
CNNVD-202508-2901
Related CVE
- CNNVD Published: 2025-08-24
Description (Chinese)
IBM Jazz Foundation是美国国际商业机器(IBM)公司的一个面向软件交付技术的下一代协作平台。 IBM Jazz Foundation存在安全漏洞,该漏洞源于未经验证的远程攻击者可能更新服务器属性文件,执行未授权操作。以下版本受到影响:7.0.2至7.0.2 iFix035版本、7.0.3至7.0.3 iFix018版本和7.1.0至7.1.0 iFix004版本。
Description (English)
IBM Jazz Foundation is a next-generation collaborative platform for software delivery technology for the United States International Business Machine (IBM). IBM Jazz Foundation has a security loophole, which stems from the possibility of uncertified remote assailants updating server attribute files to perform unauthorized operations. The following versions were affected: 7.0.2 to 7.0.2 iFix035, 7.0.3 to 7.0.3 iFix018 and 7.1.0 to 7.1.0 iFix004.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
国际商业机器
Published
2025-08-24
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7242925 https://access.redhat.com/security/cve/cve-2025-36157 https://nvd.nist.gov/vuln/detail/CVE-2025-36157
Patch
https://www.ibm.com/support/pages/node/7242925
Share on: