IBM
CVE-2025-13375
CRITICAL
Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
2DescriptionCVE.org
IBM Common Cryptographic Architecture (CCA) 7.5.52 and 8.4.82 could allow an unauthenticated user to execute arbitrary commands with elevated privileges on the system.
AnalysisAI
IBM Common Cryptographic Architecture (CCA) 7.5.52 and 8.4.82 allows unauthenticated users to execute certain cryptographic operations that should require elevated privileges.
Technical ContextAI
IBM CCA has a CWE-250 execution with unnecessary privileges vulnerability that allows unauthenticated users to perform cryptographic operations requiring higher privilege levels.
Affected ProductsAI
IBM CCA 7.5.52 IBM CCA 8.4.82
RemediationAI
Apply IBM patches. Review cryptographic access policies.
Same weakness CWE-250 – Execution with Unnecessary Privileges
View allShare
External POC / Exploit Code
Leaving vuln.today