IBM Storage Scale Vulnerability Exposes Resources to Unauthorized Access
CVE-2025-14604

6.6MEDIUM

Key Information:

Vendor: IBM
Status: Storage Scale
Vendor: CVE Published:; 3 March 2026

What is CVE-2025-14604?

The identified vulnerability in IBM Storage Scale allows a local user to inadvertently trigger additional permissions on resources, which can lead to these resources being executed by unauthorized actors. This can expose sensitive system functionalities and increase the risk of misuse by unintended users. Organizations utilizing affected versions should assess their security posture and apply the necessary patches as recommended.

Affected Version(s)

Storage Scale IBM S

References

https://www.ibm.com/support/pages/node/7262312

vendor-advisorypatch

CVSS V3.1

Score:

6.6

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 3, 2026
Vulnerability Reserved
Dec 12, 2025

CVE-2025-14604 Data

JSON