IBM Product Security Update Advisory (CVE-2025-13855)

overview

We have released security updates that address vulnerabilities in IBM products. users of affected products are encouraged to update to the latest version.

affected products

CVE-2025-13855

IBM Storage Protect Server Version: 8.2.0

resolved Vulnerabilities

SQL injection vulnerability in IBM Storage Protect Server (CVE-2025-13855)

vulnerability patches

Vulnerability patches have been made available in the latest update. please follow the instructions on the reference site to update to the latest version of the vulnerability patch.

CVE-2025-13855

IBM Storage Protect Server version: 8.2.1

references

[1] Security Bulletin:IBM Storage Protect Server is affected by a vulnerability that could allow authenticated users to access administrative metadata through the JSON-RPC endpoint (CVE-2025-13855).
https://www.ibm.com/support/pages/node/7267783