Cross-Site Request Forgery in IBM ApplinX 11.1
CVE-2025-36411

3.5LOW

Key Information:

Vendor: IBM
Status: Applinx
Vendor: CVE Published:; 20 January 2026

What is CVE-2025-36411?

IBM ApplinX 11.1 is susceptible to a cross-site request forgery vulnerability, which could permit attackers to perform unauthorized actions by exploiting the trust established between the user and the application. This flaw may lead to significant security risks as it allows attackers to act on behalf of a legitimate user without their consent.

Affected Version(s)

ApplinX 11.1

References

https://www.ibm.com/support/pages/node/7257446

vendor-advisorypatch

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jan 20, 2026
Vulnerability Reserved
Apr 15, 2025

JSON