Security Bulletin: IBM Engineering Lifecycle Management - Engineering Workflow Management is impacted by vulnerabilities HTML / XSS Injection observed — CVE-2025-33128
IBM · CVE-2025-33128
ID
CVE-2025-33128
CVE-2025-33128
Date
Activity
Source
IBM
IBM
Threat
medium
medium
Summary
CVE-2025-33128 is a advisory from IBM. Security Bulletin: IBM Engineering Lifecycle Management - Engineering Workflow Management is impacted by vulnerabilities HTML / XSS Injection observed Severity/Threat: medium.
Product
IBM Engineering Workflow Management
What to do
General, cautious steps (verify details in the official source):
- Review exposure and plan remediation based on risk and environment.
- Identify affected product versions in your inventory and verify whether you are impacted.
- Apply vendor patches/updates or recommended mitigations as soon as available.
- Read the official advisory for exact affected versions and remediation steps.