CVE-2025-36145
Analyzed Analyzed - Analysis Complete
IBM watsonx.data Unrestricted File Transfer and Modification

Publication date: 2026-05-26

Last updated on: 2026-06-01

Assigner: IBM Corporation

Description
IBM watsonx.data 2.2 through 2.3.1 IBM Lakehouse does not properly restrict inbound and outbound connections which could allow an attacker to transfer or modify files without restrictions.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-05-26
Last Modified
2026-06-01
Generated
2026-06-16
AI Q&A
2026-05-26
EPSS Evaluated
2026-06-14
NVD
CVE-2025-36145
EUVD
EUVD-2025-209935
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
ibm watsonx.data From 2.2.0 (inc) to 2.3.1 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-923 The product establishes a communication channel to (or from) an endpoint for privileged or protected operations, but it does not properly ensure that it is communicating with the correct endpoint.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2025-36145 affects IBM Lakehouse, where the software does not properly restrict inbound and outbound connections. This flaw could allow an attacker to transfer or modify files without proper authorization.

The vulnerability is classified under CWE-923, which relates to improper restriction of communication channels to intended endpoints.

Impact Analysis

Exploitation of this vulnerability could enable unauthorized file operations such as transferring or modifying files. This may lead to data leaks or system compromise.

Compliance Impact

The vulnerability in IBM Lakehouse allows unauthorized transfer or modification of files due to improper restrictions on inbound and outbound connections. Such unauthorized data access or modification could potentially lead to data breaches or leaks.

This kind of security weakness may impact compliance with data protection regulations like GDPR or HIPAA, which require strict controls to protect sensitive data from unauthorized access or alteration.

However, the provided information does not explicitly state the direct effects on compliance with these standards.

Mitigation Strategies

To mitigate this vulnerability, it is important to properly restrict inbound and outbound connections on IBM watsonx.data and IBM Lakehouse installations to prevent unauthorized file transfers or modifications.

Since the vulnerability arises from improper restriction of communication channels, reviewing and tightening network access controls, firewall rules, and application-level permissions is recommended.

Additionally, applying any available patches or updates from IBM addressing this issue should be prioritized.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-36145. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart