CVE-2025-36059

Multiple security vulnerabilities are addressed in IBM Business Automation Workflow Containers fixes December 2025

Description

IBM Business Automation Workflow containers 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 24.0.1 Interim Fix 005, and 24.0.0 through 24.0.0 Interim Fix 006. IBM Cloud Pak for Business Automation could allow a local user with access to the container to execute OS system calls.

INFO

Published Date :

2026-01-20T15:07:46.448Z

Last Modified :

2026-01-20T15:54:41.357Z

Source :

ibm

AFFECTED PRODUCTS

The following products are affected by CVE-2025-36059 vulnerability.

Vendors	Products
Ibm	Business Automation Workflow Business Automation Workflow Containers

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-36059.

URL	Resource
https://www.ibm.com/support/pages/node/7256777

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact