Unrated severityNVD Advisory· Published Oct 7, 2025· Updated Feb 26, 2026
IBM InfoSphere Data Replication VSAM for z/OS Remote Source code execution
CVE-2025-36156
Description
IBM InfoSphere Data Replication VSAM for z/OS Remote Source 11.4 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user with access to the files storing CECSUB or CECRM on the container could overflow the buffer and execute arbitrary code on the system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:ibm:infosphere_data_replication:11.4:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:ibm:infosphere_data_replication:11.4:*:*:*:*:*:*:*range: 0
- (no CPE)range: = 11.4
Patches
Vulnerability mechanics
References
1- www.ibm.com/support/pages/node/7247224mitrevendor-advisorypatch
News mentions
0No linked articles in our index yet.