Unrated severityNVD Advisory· Published Feb 17, 2026· Updated Feb 18, 2026

Privileged User File Upload Vulnerability Leading to Limited Server-Side Execution affects watsonx.data

CVE-2025-36183

Description

IBM watsonx.data 2.2 through 2.2.1 IBM Lakehouse could allow a privileged user to upload malicious files that could be executed server to modify limited files or data.

Affected products

IBM/watsonx.datav5
cpe:2.3:a:ibm:watsonxdata:2.2:*:*:*:*:*:*:*
Range: 2.2
IBM/Lakehousellm-create
Range: <= 2.2.1
IBM/Watsonx.datallm-fuzzy
Range: 2.0.0 <= 2.2.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.ibm.com/support/pages/node/7260118mitrevendor-advisorypatch

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000