cnvd - cnvd-2025-18591

CNVD-2025-18591

Vulnerability from cnvd - Published: 2025-08-11

Title

IBM Cloud Pak for Business Automation授权问题漏洞

Description

IBM Cloud Pak for Business Automation是IBM推出的企业级业务流程自动化平台，提供智能文档处理、工作流管理和决策自动化等功能。 IBM Cloud Pak for Business Automation存在安全漏洞，该漏洞源于用户可通过受控键值间接引用对象。攻击者可利用该漏洞通过用户可控参数获取敏感用户及系统信息。

Severity

中

Patch Name

IBM Cloud Pak for Business Automation授权问题漏洞的补丁

Patch Description

Formal description

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： https://www.ibm.com/support/pages/node/7241570

Reference

https://nvd.nist.gov/vuln/detail/CVE-2025-36023

Impacted products

Name
['IBM Cloud Pak for Business Automation >=24.0.0，<=24.0.0IF005', 'IBM Cloud Pak for Business Automation >=24.0.1，<=24.0.1IF002']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2025-36023",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2025-36023"
    }
  },
  "description": "IBM Cloud Pak for Business Automation\u662fIBM\u63a8\u51fa\u7684\u4f01\u4e1a\u7ea7\u4e1a\u52a1\u6d41\u7a0b\u81ea\u52a8\u5316\u5e73\u53f0\uff0c\u63d0\u4f9b\u667a\u80fd\u6587\u6863\u5904\u7406\u3001\u5de5\u4f5c\u6d41\u7ba1\u7406\u548c\u51b3\u7b56\u81ea\u52a8\u5316\u7b49\u529f\u80fd\u3002\n\nIBM Cloud Pak for Business Automation\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7528\u6237\u53ef\u901a\u8fc7\u53d7\u63a7\u952e\u503c\u95f4\u63a5\u5f15\u7528\u5bf9\u8c61\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u7528\u6237\u53ef\u63a7\u53c2\u6570\u83b7\u53d6\u654f\u611f\u7528\u6237\u53ca\u7cfb\u7edf\u4fe1\u606f\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a \r\nhttps://www.ibm.com/support/pages/node/7241570",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2025-18591",
  "openTime": "2025-08-11",
  "patchDescription": "IBM Cloud Pak for Business Automation\u662fIBM\u63a8\u51fa\u7684\u4f01\u4e1a\u7ea7\u4e1a\u52a1\u6d41\u7a0b\u81ea\u52a8\u5316\u5e73\u53f0\uff0c\u63d0\u4f9b\u667a\u80fd\u6587\u6863\u5904\u7406\u3001\u5de5\u4f5c\u6d41\u7ba1\u7406\u548c\u51b3\u7b56\u81ea\u52a8\u5316\u7b49\u529f\u80fd\u3002\r\n\r\nIBM Cloud Pak for Business Automation\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7528\u6237\u53ef\u901a\u8fc7\u53d7\u63a7\u952e\u503c\u95f4\u63a5\u5f15\u7528\u5bf9\u8c61\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u901a\u8fc7\u7528\u6237\u53ef\u63a7\u53c2\u6570\u83b7\u53d6\u654f\u611f\u7528\u6237\u53ca\u7cfb\u7edf\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "IBM Cloud Pak for Business Automation\u6388\u6743\u95ee\u9898\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "IBM Cloud Pak for Business Automation \u003e=24.0.0\uff0c\u003c=24.0.0IF005",
      "IBM Cloud Pak for Business Automation \u003e=24.0.1\uff0c\u003c=24.0.1IF002"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2025-36023",
  "serverity": "\u4e2d",
  "submitTime": "2025-08-11",
  "title": "IBM Cloud Pak for Business Automation\u6388\u6743\u95ee\u9898\u6f0f\u6d1e"
}

CVE-2025-36023 (GCVE-0-2025-36023)

Vulnerability from cvelistv5 – Published: 2025-08-08 14:51 – Updated: 2025-08-08 15:07

Summary

IBM Cloud Pak for Business Automation 24.0.0 through 24.0.0 IF005 and 24.0.1 through 24.0.1 IF002 could allow an authenticated user to view sensitive user and system information due to an indirect object reference through a user-controlled key.

Severity ?

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-639 - Authorization Bypass Through User-Controlled Key

Assigner

ibm

References

URL

Tags

https://www.ibm.com/support/pages/node/7241570

vendor-advisorypatch

Impacted products

	Vendor	Product	Version
	IBM	Cloud Pak for Business Automation	Affected: 24.0.0 , ≤ 24.0.0 IF005 (semver) Affected: 24.0.1 , ≤ 24.0.1 IF002 (semver) cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:::::::* cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:ifix5:::::: cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.1:::::::* cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.1:ifix2::::::

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-36023",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-08-08T15:07:06.250680Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-08-08T15:07:16.477Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "cpes": [
            "cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.0:ifix5:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.1:*:*:*:*:*:*:*",
            "cpe:2.3:a:ibm:cloud_pak_for_business_automation:24.0.1:ifix2:*:*:*:*:*:*"
          ],
          "defaultStatus": "unaffected",
          "product": "Cloud Pak for Business Automation",
          "vendor": "IBM",
          "versions": [
            {
              "lessThanOrEqual": "24.0.0 IF005",
              "status": "affected",
              "version": "24.0.0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "24.0.1 IF002",
              "status": "affected",
              "version": "24.0.1",
              "versionType": "semver"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "IBM Cloud Pak for Business Automation 24.0.0 through 24.0.0 IF005 and 24.0.1 through 24.0.1 IF002 could allow an authenticated user to view sensitive user and system information due to an indirect object reference through a user-controlled key."
            }
          ],
          "value": "IBM Cloud Pak for Business Automation 24.0.0 through 24.0.0 IF005 and 24.0.1 through 24.0.1 IF002 could allow an authenticated user to view sensitive user and system information due to an indirect object reference through a user-controlled key."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-639",
              "description": "CWE-639 Authorization Bypass Through User-Controlled Key",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-08-08T14:51:12.631Z",
        "orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
        "shortName": "ibm"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory",
            "patch"
          ],
          "url": "https://www.ibm.com/support/pages/node/7241570"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Affected Product(s)  Version(s)  Remediation / Fix\u003cbr\u003eIBM Cloud Pak for Business Automation  V24.0.1 - V24.0.1-IF002  Apply security fix 24.0.1-IF004 or upgrade to V25.0.0\u003cbr\u003eIBM Cloud Pak for Business Automation  V24.0.0 - V24.0.0-IF005  Upgrade and apply security fix 24.0.0-IF006 or upgrade to 24.0.1-IF004 or upgrade to V25.0.0\u003cbr\u003eIBM Cloud Pak for Business Automation  earlier unsupported releases  Upgrade to 24.0.0-IF006 or upgrade to 24.0.1-IF004 or upgrade to V25.0.0\u003cbr\u003e\u003cbr\u003e"
            }
          ],
          "value": "Affected Product(s)  Version(s)  Remediation / Fix\nIBM Cloud Pak for Business Automation  V24.0.1 - V24.0.1-IF002  Apply security fix 24.0.1-IF004 or upgrade to V25.0.0\nIBM Cloud Pak for Business Automation  V24.0.0 - V24.0.0-IF005  Upgrade and apply security fix 24.0.0-IF006 or upgrade to 24.0.1-IF004 or upgrade to V25.0.0\nIBM Cloud Pak for Business Automation  earlier unsupported releases  Upgrade to 24.0.0-IF006 or upgrade to 24.0.1-IF004 or upgrade to V25.0.0"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "IBM Cloud Pak for Business Automation security bypass",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522",
    "assignerShortName": "ibm",
    "cveId": "CVE-2025-36023",
    "datePublished": "2025-08-08T14:51:12.631Z",
    "dateReserved": "2025-04-15T21:16:08.835Z",
    "dateUpdated": "2025-08-08T15:07:16.477Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2025-18591

CVE-2025-36023 (GCVE-0-2025-36023)

Tags

Sightings

Nomenclature