CVE-2025-36058

Multiple security vulnerabilities are addressed in IBM Business Automation Workflow Containers fixes December 2025

Description

IBM Business Automation Workflow containers 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 24.0.1 Interim Fix 005, and 24.0.0 through 24.0.0 Interim Fix 006. IBM Cloud Pak for Business Automation and IBM Business Automation Workflow containers may disclose sensitve configuration information in a config map.

INFO

Published Date :

2026-01-20T15:09:07.082Z

Last Modified :

2026-01-20T15:53:20.326Z

Source :

ibm

AFFECTED PRODUCTS

The following products are affected by CVE-2025-36058 vulnerability.

Vendors	Products
Ibm	Business Automation Workflow Business Automation Workflow Containers

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-36058.

URL	Resource
https://www.ibm.com/support/pages/node/7256777

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact