3 matches found
Security Bulletin: IBM webMethods Integration Sever is affected by remote code execution via pub.xslt.transformSerialXML
Summary IBM webMethods Integration Sever is affected by remote code execution via pub.xslt.transformSerialXML. CVE-2025-36049 Vulnerability Details CVEID:CVE-2025-36049 DESCRIPTION: IBM webMethods Integration is vulnerable to an XML external entity injection XXE attack when processing XML data. A...
CVE-2025-36049
creationtimestamp| type| source ---|---|--- 2025-06-18 16:32:08+00:00| seen| Telegram/T9EREMrZJ40Ll1HhU5KoHVoW6Lc4lkfgV3T7v7c6jHizrY 2025-06-18 16:43:38+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18788 2025-06-18 17:13:32+00:00| seen|...
CVE-2025-36049
IBM webMethods Integration Server (on‑prem) versions 10.5, 10.7, 10.11, and 10.15 are affected by CVE-2025-36049 due to an XML external entity (XXE) processing vulnerability in XML data handling. The underlying issue is XXE which could allow a remote authenticated attacker to execute arbitrary co...