Skip to main content

IBM watsonx.data EUVDEUVD-2025-210379

| CVE-2025-36324 MEDIUM
Server-Side Request Forgery (SSRF) (CWE-918)
2026-06-30 ibm GHSA-wccc-w6wf-ghf3
4.3
CVSS 3.1 · Vendor: ibm
Share

Severity by source

Vendor (ibm) PRIMARY
4.3 MEDIUM
AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
vuln.today AI
4.3 MEDIUM

Network-reachable SSRF requiring authenticated low-privilege access; impact limited to partial confidentiality via internal network enumeration with no integrity or availability consequence.

3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
4.0 AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (ibm).

CVSS VectorVendor: ibm

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
None

Lifecycle Timeline

1
Analysis Generated
Jun 30, 2026 - 21:18 vuln.today

DescriptionCVE.org

IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 s vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.

AnalysisAI

Server-side request forgery in IBM watsonx.data intelligence versions 5.2.0 through 5.3.0 enables authenticated attackers to coerce the server into issuing arbitrary outbound HTTP requests to attacker-controlled destinations. The CVSS vector (PR:L) confirms exploitation requires a valid account, but no elevated privileges are needed beyond basic authentication. Primary impact is internal network enumeration and potential pivoting to services that trust the watsonx.data host, rather than direct data exfiltration. No public exploit code or CISA KEV listing has been identified at time of analysis.

Technical ContextAI

CWE-918 (Server-Side Request Forgery) describes a class of vulnerability where an application fetches a remote resource based on user-supplied input without adequate URL validation or allowlisting. IBM watsonx.data intelligence is an enterprise lakehouse platform that integrates with data sources and external services, making it architecturally plausible that URL-handling functionality exists within its data connector or API layers. The affected CPE (cpe:2.3:a:ibm:watsonx.data_intelligence:*:*:*:*:*:*:*:*) covers the intelligence tier of the watsonx.data product family across versions 5.2.0, 5.2.1, 5.2.2, and 5.3.0. The CVSS vector AV:N/AC:L confirms the attack surface is reachable over a network with no special configuration complexity, meaning any accessible API endpoint that accepts a URL parameter is a candidate entry point.

RemediationAI

Apply the vendor-supplied patch per IBM's advisory at https://www.ibm.com/support/pages/node/7277801. The exact remediated version number is not independently confirmed from available data - consult the IBM advisory directly to identify the specific fix version and upgrade path. As a compensating control prior to patching, restrict the network egress of the watsonx.data intelligence host to a defined allowlist of legitimate data source endpoints, blocking arbitrary outbound HTTP/HTTPS to internal RFC-1918 ranges and cloud metadata endpoints (e.g., 169.254.169.254); this limits the utility of SSRF even if triggered. Additionally, enforce strong account hygiene and least-privilege access to reduce the pool of authenticated users who could trigger the flaw. Note that egress filtering may impact legitimate data connector functionality and should be tested before enforcement.

Share

EUVD-2025-210379 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy