CVE-2025-1139 | THREATINT

Description

IBM Edge Application Manager 4.5 could allow a local user to read or modify resources that they should not have authorization to access due to incorrect permission assignment.

PUBLISHED Reserved 2025-02-09 | Published 2025-08-20 | Updated 2025-08-20 | Assigner ibm

MEDIUM: 6.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N

Problem types

CWE-732 Incorrect Permission Assignment for Critical Resource

Product status

Default status

unaffected

4.5

affected

References

www.ibm.com/support/pages/node/7242632 vendor-advisory patch

cve.org (CVE-2025-1139)

nvd.nist.gov (CVE-2025-1139)

Download JSON