CVE-2025-36333
MediumCVSS 4.3Exploitation Probability (EPSS)
Low risk20th percentile — higher than 20% of all known CVEs
Summary
A vulnerability in IBM watsonx.data intelligence versions 5.2.0, 5.2.1, 5.2.2, and 5.3.0 allows an authenticated user to perform unauthorized actions due to improper enforcement of behavioral workflow.
Risk Assessment
The risk is that an authenticated user may bypass business constraints and perform operations they are not authorized for, potentially leading to data integrity violations or unauthorized access.
Recommendation
It is recommended to immediately upgrade IBM watsonx.data intelligence to the latest patched version and implement additional access controls for authenticated users.
Original NVD description (English source)
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow an authenticated user to perform unauthorized actions due to the improper enforcement of behavioral workflow.

