CVE-2025-25020

CWE-12873 documents3 sources
Severity
6.5MEDIUM
EPSS
0.2%
top 56.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
IBM Cloud PAK FOR SecurityIBM Qradar Suite SoftwareIBM Qradar Suite
Timeline
PublishedJun 3

Description

IBM QRadar Suite Software 1.10.12.0 through 1.11.2.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 could allow an authenticated user to cause a denial of service due to improperly validating API data input.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages4 packages

CVEListV5ibm/qradar_suite_software1.10.12.01.11.2.0
NVDibm/qradar_suite1.10.12.01.11.2.0
CVEListV5ibm/cloud_pak_for_security1.10.0.01.10.11.0
NVDibm/cloud_pak1.10.0.01.10.11.0

🔴Vulnerability Details

2
CVEList
IBM QRadar Suite Software and IBM Cloud Pak for Security improper input validation2025-06-03
GHSA
GHSA-wmgq-6qjq-p9j6: IBM QRadar Suite Software 12025-06-03
CVE-2025-25020 (MEDIUM CVSS 6.5) | IBM QRadar Suite Software 1.10.12.0 | cvebase.io