CVE-2025-1495
Severity CVSS v4.0:
Pending analysis
Type:
CWE-306
Missing Authentication for Critical Function
Publication date:
03/05/2025
Last modified:
05/05/2025
Description
IBM Business Automation Workflow 24.0.0 and 24.0.1 through 24.0.1 IF001 Center may leak sensitive information due to missing authorization validation.
Impact
Base Score 3.x
4.30
Severity 3.x
MEDIUM