CVE-2025-3319CRITICAL 9.8EPSS p23.8%

CVE-2025-3319CVE-2025-3319

Description

IBM Spectrum Protect Server 8.1 through 8.1.26 could allow attacker to bypass authentication due to improper session authentication which can result in access to unauthorized resources.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.32% probability of exploitation · percentile 23.8% · 2026-06-19T12:03:05Z
Published2025-06-20
Last modified2025-08-13

Underlying weaknesses· 1

CWE-306

References

  1. https://www.ibm.com/support/pages/node/7236999

1

TypeTargetConfidenceTier
WeaknessMissing Authentication for Critical Functioncwe-3060%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-36120
CVE
CVE-2025-36386
CVE
CVE-2025-13915
CVE
CVE-2025-33005
CVE
CVE-2025-36245
CVE
CVE-2025-13375
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.