Vulnerability Database

308,379

Total vulnerabilities in the database

CVE-2025-36222

IBM Fusion 2.2.0 through 2.10.1, IBM Fusion HCI 2.2.0 through 2.10.0, and IBM Fusion HCI for watsonx 2.8.2 through 2.10.0 uses insecure default configurations that could expose AMQStreams without client authentication that could allow an attacker to perform unauthorized actions.

Published: Sep 11, 2025
Updated: Nov 16, 2025
CVE: CVE-2025-36222
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.7
AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

CWEs:

CWE-1188

Affected Software
References

Software	From	Fixed in
ibm / storage_fusion	2.2.0	2.11.0
ibm / storage_fusion_hci	2.2.0	2.11.0
ibm / storage_fusion_hci_for_watsonx	2.8.2	2.11.0

https://www.ibm.com/support/pages/node/7244646

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo