exploitDog

CVE-2025-36418

Опубликовано: 20 янв. 2026

Источник: nvd

CVSS3: 7.3

CVSS3: 9.8

EPSS Низкий

Описание

IBM ApplinX 11.1 is vulnerable due to a privilege escalation vulnerability due to improper verification of JWT tokens. An attacker may be able to craft or modify a JSON web token in order to impersonate another user or to elevate their privileges.

Ссылки

https://www.ibm.com/support/pages/node/7257446
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:applinx:11.1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 6%

0.00024

Низкий

7.3 High

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-347

Связанные уязвимости

GHSA-c5cv-q9qq-59q9

CVSS3: 7.3

github

18 дней назад

IBM ApplinX 11.1 is vulnerable due to a privilege escalation vulnerability due to improper verification of JWT tokens. An attacker may be able to craft or modify a JSON web token in order to impersonate another user or to elevate their privileges.

EPSS

Процентиль: 6%

0.00024

Низкий

7.3 High

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-347