CVE-2025-27367 · CVEKit

cve.orgen

333 chars

IBM OpenPages with Watson 8.3 and 9.0 is vulnerable to improper input validation due to bypassing of client-side validation for the data types and requiredness of fields for GRC Objects when an authenticated user sends a specially crafted payload to the server allowing for data to be saved without storing the required fields.

NVDen

333 chars

IBM OpenPages with Watson 8.3 and 9.0 is vulnerable to improper input validation due to bypassing of client-side validation for the data types and requiredness of fields for GRC Objects when an authenticated user sends a specially crafted payload to the server allowing for data to be saved without storing the required fields.

NVDes

361 chars

IBM OpenPages con Watson 8.3 y 9.0 es vulnerable a una validación de entrada incorrecta debido a la omisión de la validación del lado del cliente para los tipos de datos y la exigencia de campos para objetos GRC cuando un usuario autenticado envía un paylad especialmente manipulado al servidor que permite guardar los datos sin almacenar los campos requeridos.

CVSS metrics across sources

3

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
3.1	Primary	cve.org	5.3	—	—	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N