DataStage on Cloud Pak for Data is vulnerable to sensitive...

8.1 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Description

IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 returns sensitive information in an HTTP response that could be used to impersonate other users in the system.

Basic Information

ID CVE-2025-13691

Source ibm

Published Feb 17, 2026 at 20:17

Modified Feb 17, 2026 at 20:18

Affected Product

Vendor IBM

Product DataStage on Cloud Pak for Data

Version 5.1.2

Affected Versions IBM DataStage on Cloud Pak for Data 5.1.2

CWE Classification

CWE-497

References

www.ibm.com /support/pages/node/7259956

{
    "lastseen": "",
    "description": "IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 returns sensitive information in an HTTP response that could be used to impersonate other users in the system.",
    "published": "2026-02-17T20:17:24.149Z",
    "modified": "2026-02-17T20:18:04.935Z",
    "type": "cve",
    "title": "DataStage on Cloud Pak for Data is vulnerable to sensitive information leaks due to HTTP processing",
    "source": "ibm",
    "references": "https://www.ibm.com/support/pages/node/7259956",
    "id": "CVE-2025-13691",
    "bulletinFamily": "",
    "cwe": [
        "CWE-497"
    ],
    "cvelist": null,
    "sourceData": "IBM DataStage on Cloud Pak for Data 5.1.2",
    "sourceHref": "",
    "cvss": {
        "score": 8.1,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "DataStage on Cloud Pak for Data",
    "version": "5.1.2",
    "vendor": "IBM",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

DataStage on Cloud Pak for Data is vulnerable to sensitive information leaks due to HTTP processing_CVE-2025-13691