Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.8
IBM DataStage on Cloud Pak for Data allows unapproved commands to run with normal user access
CVE-2025-13688
Summary
An attacker with valid login credentials can run unauthorized system commands, potentially leading to unauthorized changes or data access. This could be exploited by an authenticated user who wants to gain more access than they're supposed to have. To protect your data, update to the latest version or apply a patch.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| ibm | datastage_on_cloud_pak_for_data | > 5.1.2 , <= 5.3.1 | – |
Original title
IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 could allow an authenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user ...
Original description
IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 could allow an authenticated user to execute arbitrary commands with normal user privileges on the system due to improper validation of user supplied input through the wrapped command component.
nvd CVSS3.1
8.8
Vulnerability type
CWE-78
OS Command Injection
- https://www.ibm.com/support/pages/node/7262347 Vendor Advisory
Published: 3 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026