CVE-2025-14290

MEDIUM NVD

CVSS Score 5.4

Severity MEDIUM

Published May 26, 2026

Vendor unknown

Description

IBM webMethods Integration (on prem) -Integration Server 10.15 through IS_10.15_Core_Fix2611.1 to IS_11.1_Core_Fix10 IBM webMethods Integration is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.

References

https://www.ibm.com/support/pages/node/7273550