exploitDog

CVE-2025-13687

Опубликовано: 03 мар. 2026

Источник: nvd

CVSS3: 6.3

CVSS3: 8.8

EPSS Низкий

Описание

IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 could allow an authenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user supplied input through the user-defined function component.

Ссылки

https://www.ibm.com/support/pages/node/7262347
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:datastage_on_cloud_pak_for_data:*:*:*:*:*:*:*:*

Версия от 5.1.2 (включая) до 5.3.1 (исключая)

EPSS

Процентиль: 14%

0.00046

Низкий

6.3 Medium

CVSS3

8.8 High

CVSS3

Дефекты

CWE-78

Связанные уязвимости

GHSA-xmvf-77hp-pff9

CVSS3: 6.3

github

около 1 месяца назад

IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 could allow an authenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user supplied input through the user-defined function component.

EPSS

Процентиль: 14%

0.00046

Низкий

6.3 Medium

CVSS3

8.8 High

CVSS3

Дефекты

CWE-78