CVE-2025-25022HIGH 8.8EPSS p20.6%

CVE-2025-25022CVE-2025-25022

Description

IBM QRadar Suite Software 1.10.12.0 through 1.11.2.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 could allow an unauthenticated user in the environment to obtain highly sensitive information in configuration files.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.29% probability of exploitation · percentile 20.6% · 2026-06-19T12:03:05Z
Published2025-06-03
Last modified2025-08-12

Underlying weaknesses· 1

CWE-260

References

  1. https://www.ibm.com/support/pages/node/7235432

1

TypeTargetConfidenceTier
WeaknessPassword in Configuration Filecwe-2600%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-33117
CVE
CVE-2024-56462
CVE
CVE-2025-36221
CVE
CVE-2025-36376
CVE
CVE-2025-13689
CVE
CVE-2025-36377
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.