CVE-2025-36104

Summary

IBM Storage Scale 5.2.3.0 and 5.2.3.1 could allow an authenticated user to obtain sensitive information from files due to the insecure permissions inherited through the SMB protocol.

Affected Software

VendorProductVersion RangeStatus
IBMStorage Scale5.2.3.0, 5.2.3.1affected

Weaknesses

  • CWE-277: CWE-277 Insecure Inherited Permissions

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References