CVE-2025-25022

Critical CVSS 9.6

Overview

IBM QRadar Suite Software 1.10.12.0 through 1.11.2.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 could allow an unauthenticated user in the environment to obtain highly sensitive information in configuration files.

CWE: CWE-260 Published: 2025-06-03T16:15:24.437

Risk analysis

This vulnerability is rated 🔴 CRITICAL.

CVSS: 9.6 (CRITICAL)
Detected tags: unauth_access (tag impact: HIGH)

Recommended actions:

Enforce authentication/authorization; reduce default endpoint exposure.

Overview

Recommended tools

Tags