CVE-2025-0160CRITICAL 9.8EPSS p38.1%

CVE-2025-0160CVE-2025-0160

Description

IBM FlashSystem (IBM Storage Virtualize (8.5.0.0 through 8.5.0.13, 8.5.1.0, 8.5.2.0 through 8.5.2.3, 8.5.3.0 through 8.5.3.1, 8.5.4.0, 8.6.0.0 through 8.6.0.5, 8.6.1.0, 8.6.2.0 through 8.6.2.1, 8.6.3.0, 8.7.0.0 through 8.7.0.2, 8.7.1.0, 8.7.2.0 through 8.7.2.1) could allow a remote attacker with access to the system to execute arbitrary Java code due to improper restrictions in the RPCAdapter service.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.49% probability of exploitation · percentile 38.1% · 2026-06-19T12:03:05Z
Published2025-02-28
Last modified2025-08-18

Underlying weaknesses· 1

CWE-114

References

  1. https://www.ibm.com/support/pages/node/7184182

1

TypeTargetConfidenceTier
WeaknessProcess Controlcwe-1140%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-0159
CVE
CVE-2025-36120
CVE
CVE-2025-36038
CVE
CVE-2025-1137
CVE
CVE-2026-9311
CVE
CVE-2025-13855
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.