What is CVE-2025-36221?

CVE-2025-36221 is a medium-severity vulnerability in Ibm Cloud Pak For Data System - Cyclops, classified under CWE-1392. CVSS score: 5.3/10. Published 2026-05-26.

How severe is CVE-2025-36221?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Vulnerability in Ibm Cloud Pak For Data System - Cyclops

CVE-2025-36221

IBM Cloud Pak for Data System - Cyclops 11.3.0.2 through Interim Fix 002 IBM Cloud Pak for Data System uses default passwords default passwords from the manufacturing process for use during the installation process, which could allow an a…

EPSS: 0.000 (13.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N.

Affected products

Ibm Cloud Pak For Data System - Cyclops — versions 11.3.0.2
Ibm Cloud_pak_for_data_system_-_cyclops — versions 11.3.0.2

Weakness classification (CWE)

CWE-1392

References

psirt@us.ibm.com (vendor-advisory, patch, Vendor Advisory)

Frequently asked questions

What is CVE-2025-36221?: CVE-2025-36221 is a medium-severity vulnerability in Ibm Cloud Pak For Data System - Cyclops, classified under CWE-1392. CVSS score: 5.3/10. Published 2026-05-26.
How severe is CVE-2025-36221?: Medium severity. CVSS v3 base score is 5.3 out of 10.