Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-25022

IBM QRadar Suite Software 1.10.12.0 through 1.11.2.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 could allow an unauthenticated user in the environment to obtain highly sensitive information in configuration files.

Published

2025-06-03T16:15:24.437

Last Modified

2025-08-12T20:00:40.577

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 9.6 (CRITICAL)

Weaknesses

Type: Secondary
CWE-260

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	ibm	cloud_pak_for_security	≤ 1.10.11.0	Yes
Application	ibm	qradar_suite	≤ 1.11.2.0	Yes

References

https://www.ibm.com/support/pages/node/7235432 Vendor Advisory ([email protected])