Description
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow an authenticated user to perform unauthorized actions due to the improper enforcement of behavioral workflow.
Published: 2026-06-30
Score: 4.3 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An authentication boundary flaw in IBM watsonx.data intelligence versions 5.2.0 through 5.3.0 allows an attacker who has legitimate credentials to execute actions that are not authorized for that user. The flaw arises from improper enforcement of behavioral workflow, effectively elevating the attacker’s privileges (CWE-841). The resulting impact is the potential for disclosure, modification, or denial of data or processes that the user should not access.

Affected Systems

IBM Watsonx.data intelligence running the affected releases 5.2.0, 5.2.1, 5.2.2, or 5.3.0 is vulnerable. IBM has released fixes that are included in later builds such as 5.3.05.3.1 or newer; systems should be upgraded from any of the identified vulnerable releases.

Risk and Exploitability

The CVSS score of 4.3 places this vulnerability in the moderate severity range, yet it requires authentication, meaning the threat surface is limited to individuals who already have login credentials. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog, suggesting that current exploitation risk is low but proactive remediation is still recommended. An attacker would need an authenticated session and could exploit the workflow mis‑enforcement to perform unauthorized actions.

Generated by OpenCVE AI on June 30, 2026 at 23:33 UTC.

Remediation

Vendor Solution

Affected productFixed in releaseInstructionsIBM watsonx.data intelligence 5.2.0 - 5.3.05.3.1 https://www.ibm.com/docs/en/watsonx/wdi/2.3.x?topic=new-watsonxdata-intelligence IBM strongly advises upgrading as soon as possible


OpenCVE Recommended Actions

  • Upgrade IBM watsonx.data intelligence to version 5.3.05.3.1 or later to obtain the vendor‑issued patch.
  • If an immediate upgrade is not possible, apply strict role‑based access controls to limit the permissions granted to authenticated users and monitor workflow logs for anomalous activity.
  • Coordinate with IBM support to enforce a temporary work‑around or obtain guidance on additional mitigations until the full patch is applied.

Generated by OpenCVE AI on June 30, 2026 at 23:33 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 30 Jun 2026 21:00:00 +0000

Type Values Removed Values Added
Description IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow an authenticated user to perform unauthorized actions due to the improper enforcement of behavioral workflow.
Title Vulnerabilities found in Watson Data Intelligence
First Time appeared Ibm
Ibm watsonxdata Intelligence
Weaknesses CWE-841
CPEs cpe:2.3:a:ibm:watsonxdata_intelligence:5.2.0:*:*:*:*:*:*:*
Vendors & Products Ibm
Ibm watsonxdata Intelligence
References
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N'}


Subscriptions

Ibm Watsonxdata Intelligence
cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published:

Updated: 2026-06-30T20:15:19.777Z

Reserved: 2025-04-15T21:16:52.390Z

Link: CVE-2025-36333

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-30T23:45:05Z

Weaknesses
  • CWE-841

    Improper Enforcement of Behavioral Workflow