IBM watsonx Orchestrate Vulnerability (CVE-2025-0165) Exposes Systems to SQL Injection Attacks

IBM has released a security advisory warning of a SQL injection vulnerability affecting its watsonx Orchestrate Cartridge for IBM Cloud Pak for Data. Tracked as CVE-2025-0165, the flaw carries a CVSS score of 7.6, making it a high-severity issue that could allow attackers to directly manipulate backend databases.

IBM describes watsonx Orchestrate as “an intuitive, AI-powered platform that you can use to create, configure, and deploy intelligent agents that can automate business tasks.” It supports everything from simple workflow automation to complex multi-agent systems, designed for users of all skill levels.

Its growing role in enterprise environments makes vulnerabilities within its ecosystem particularly concerning.

The flaw lies in insufficient sanitization of SQL queries. According to IBM, “IBM watsonx Orchestrate Cartridge for IBM Cloud Pak for Data is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify, or delete information in the back-end database.”

This type of vulnerability is especially dangerous because SQL injection remains one of the most common and effective attack vectors, giving adversaries potential access to sensitive enterprise data, manipulation of stored information, or even full application compromise.

IBM confirmed the following versions are impacted by CVE-2025-0165:

• 4.8.4 – 4.8.5
• 5.0.0 – 5.2

Organizations running these versions remain exposed until they apply the available fix.

IBM strongly advises immediate patching. The advisory states: “IBM strongly recommends addressing the vulnerability now by upgrading to IBM watsonx Orchestrate Cartridge 5.2.0.1.”

Customers should download the updated version from the IBM Fix Central portal and prioritize patch deployment to production environments.

Related Posts:

• IBM created the world’s smallest computer
• IBM Completes Acquisition of HashiCorp, Ushering in New Era of Hybrid Cloud Automation
• Cyber Espionage Alert: APT41 Strikes Global Industries, Steals Sensitive Data