CNNVD-202511-2291 Information
CNNVD ID
CNNVD-202511-2291
Related CVE
- CNNVD Published: 2025-11-20
Description (Chinese)
IBM webMethods Integration是美国国际商业机器(IBM)公司的一个混合的企业 iPaaS。 IBM webMethods Integration 10.11版本至10.11_Core_Fix22版本、10.15版本至10.15_Core_Fix22版本和11.1版本至11.1_Core_Fix6版本存在代码问题漏洞,该漏洞源于反序列化不受信任的对象图数据,可能导致执行任意代码。
Description (English)
IBM webMethods Information is a hybrid enterprise of the United States International Business Machinery (IBM) iPaas. IBM webMethods Information 10.11 to 10.11 Core Fix22, 10.15 to 10.15 Core Fix22 and 11.1 to 11.1 Core Fix6 have code gaps, which stem from anti-serialization untrusted object chart data and may lead to the implementation of arbitrary codes.
Hazard Level
Medium
Vulnerability Type
代码问题
Affected Vendor
国际商业机器
Published
2025-11-20
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7252090 https://access.redhat.com/security/cve/cve-2025-36072
Patch
https://www.ibm.com/support/pages/node/7252090
Share on: