CVE-2025-36156 – IBM InfoSphere Data Replication VSAM for z/OS Remote Source code execution

CVE ID : CVE-2025-36156

Published : Oct. 7, 2025, 6:15 p.m. | 19 minutes ago

Description : IBM InfoSphere Data Replication VSAM for z/OS Remote Source 11.4 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user with access to the files storing CECSUB or CECRM on the container could overflow the buffer and execute arbitrary code on the system.

Severity: 7.4 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…