CVE-2025-36410

CWE-6023 documents3 sources
Severity
4.3MEDIUM
EPSS
0.1%
top 83.55%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Applinx
Timeline
PublishedJan 20

Description

IBM ApplinX 11.1 could allow an authenticated user to perform unauthorized administrative actions on the server due to server-side enforcement of client-side security.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:NExploitability: 1.6 | Impact: 1.4

Affected Packages2 packages

CVEListV5ibm/applinx11.1
NVDibm/applinx11.1.0

🔴Vulnerability Details

2
CVEList
Multiple vulnerabilities found in IBM ApplinX.2026-01-20
GHSA
GHSA-2gqc-83gq-256v: IBM ApplinX 112026-01-20
CVE-2025-36410 (MEDIUM CVSS 4.3) | IBM ApplinX 11.1 could allow an aut | cvebase.io