CVE-2025-36222

IBM Fusion insecure default configuration

Description

IBM Fusion 2.2.0 through 2.10.1, IBM Fusion HCI 2.2.0 through 2.10.0, and IBM Fusion HCI for watsonx 2.8.2 through 2.10.0 uses insecure default configurations that could expose AMQStreams without client authentication that could allow an attacker to perform unauthorized actions.

INFO

Published Date :

2025-09-11T20:44:06.696Z

Last Modified :

2026-02-26T17:48:40.895Z

Source :

ibm

AFFECTED PRODUCTS

The following products are affected by CVE-2025-36222 vulnerability.

Vendors	Products
Ibm	Storage Fusion Storage Fusion Hci Storage Fusion Hci For Watsonx

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-36222.

URL	Resource
https://www.ibm.com/support/pages/node/7244646

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact