CVE-2025-36361 – IBM App Connect Enterprise runtime is vulnerable to a lack of authorization on windows environments using IWA

CVE ID : CVE-2025-36361

Published : Oct. 24, 2025, 10:15 a.m. | 28 minutes ago

Description : IBM App Connect Enterprise 13.0.1.0 through 13.0.4.2, and 12.0.1.0 through 12.0.12.17 could allow an authenticated user to perform unauthorized actions on customer defined resources due to missing authorization.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…