CVE-2025-13616 | THREATINT

Description

IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 returns sensitive information in an HTTP response that could be used in further attacks against the system.

PUBLISHED Reserved 2025-11-24 | Published 2026-03-03 | Updated 2026-03-03 | Assigner ibm

MEDIUM: 6.5CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Problem types

CWE-497 Exposure of Sensitive System Information to an Unauthorized Control Sphere

Product status

5.1.2 (semver)

affected

References

www.ibm.com/support/pages/node/7261771 vendor-advisory patch

cve.org (CVE-2025-13616)

nvd.nist.gov (CVE-2025-13616)

Download JSON