CVE-2025-13333

CWE-3584 documents4 sources
Severity
4.9MEDIUM
EPSS
0.0%
top 97.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Websphere Application Server
Timeline
PublishedFeb 17
Latest updateFeb 18

Description

IBM WebSphere Application Server 9.0, and 8.5 could provide weaker than expected security during system administration of security settings.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 0.7 | Impact: 3.6

Affected Packages2 packages

CVEListV5ibm/websphere_application_server9.09.0.5.27+1
NVDibm/websphere_application_server8.5.0.0, 9.0.0.0+1

🔴Vulnerability Details

2
GHSA
GHSA-jm7g-jgq2-cxf3: IBM WebSphere Application Server 92026-02-18
CVEList
IBM WebSphere Application Server could provide weaker than expected security2026-02-17

🕵️Threat Intelligence

1
Wiz
CVE-2025-13333 Impact, Exploitability, and Mitigation Steps | Wiz