CVE-2025-13689 | THREATINT

Description

IBM DataStage on Cloud Pak for Data could allow an authenticated user to execute arbitrary commands and gain access to sensitive information due to unrestricted file uploads.

PUBLISHED Reserved 2025-11-25 | Published 2026-02-17 | Updated 2026-02-19 | Assigner ibm

HIGH: 8.8CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-434 Unrestricted Upload of File with Dangerous Type

Product status

Default status

unaffected

5.1.2 (semver)

affected

References

www.ibm.com/support/pages/node/7259958

cve.org (CVE-2025-13689)

nvd.nist.gov (CVE-2025-13689)

Download JSON