CVE-2025-13375

Published Feb 4, 2026

Last updated 2 months ago

CVSS critical 9.8
hsm

Overview

Description
IBM Common Cryptographic Architecture (CCA) 7.5.52 and 8.4.82 could allow an unauthenticated user to execute arbitrary commands with elevated privileges on the system.
Source
psirt@us.ibm.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Primary
Base score
9.8
Impact score
5.9
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity
CRITICAL

Weaknesses

psirt@us.ibm.com
CWE-250

Social media

Hype score
Not currently trending

  1. IBMのHSM連携基盤「CCA」に深刻な脆弱性(CVE-2025-13375) 早急な更新を推奨 https://t.co/qEaVS1Lkha

    @cybersecnews_jp

    10 Feb 2026

    40 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. CVE-2025-13375: Critical IBM Crypto Flaw (CVSS 9.8) Exposes HSMs https://t.co/bJUt73gAMZ

    @Karma_X_Inc

    7 Feb 2026

    49 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. CVE-2025-13375: Critical IBM Crypto Flaw (CVSS 9.8) Exposes HSMs https://t.co/JuN1cnyjyI

    @CrowdCyber_Com

    7 Feb 2026

    51 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  4. CVE-2025-13375: Critical IBM Crypto Flaw (CVSS 9.8) Exposes Hardware Security Modules - Time to update those IBM cryptographic coprocessors, folks. #cybersecurity #ibm #vulnerability #cryptography https://t.co/Dy4N53HPRt

    @xplain_it_again

    7 Feb 2026

    62 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    2 Replies

    0 Quotes

  5. IBMはCommon Cryptographic Architecture(CCA)における深刻な脆弱性CVE-2025-13375を公表した。CVSSは9.8と極めて高く、外部から到達可能な場合、未認証の攻撃者が任意のコマンドを管理者権限で実行できる。

    @yousukezan

    6 Feb 2026

    867 Impressions

    0 Retweets

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. IBMの暗号コンポーネントCommon Cryptographic Architecture (CCA)に重大(Critical)な脆弱性。CVE-2025-13375はCVSSスコア9.8で、無認証の攻撃者が特権で任意コードを実行可能。HSMも露出する影響。 https://t.co/kj1fBlDqy3

    @__kokumoto

    6 Feb 2026

    780 Impressions

    0 Retweets

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. IBM warns of critical flaw CVE-2025-13375 (CVSS 9.8) in CCA software. Unauthenticated attackers can hijack HSMs. Update to v7.5.53/v8.4.84 now. #IBM #CyberSecurity #CVE202513375 #HSM #InfoSec #Cryptography #SysAdmin https://t.co/17lvPBbwvv

    @the_yellow_fall

    6 Feb 2026

    242 Impressions

    1 Retweet

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. [CVE-2025-13375: CRITICAL] IBM Common Cryptographic Architecture (CCA) 7.5.52 and 8.4.82 could allow an unauthenticated user to execute arbitrary commands with elevated privileges on the system.#cve,CVE-2025-13375,#cybersecurity https://t.co/cIxUmR52WE

    @CveFindCom

    5 Feb 2026

    95 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  9. CVE-2025-13375 IBM Common Cryptographic Architecture (CCA) 7.5.52 and 8.4.82 could allow an unauthenticated user to execute arbitrary commands with elevated privileges on the system. https://t.co/fcHvUCPWqj

    @CVEnew

    4 Feb 2026

    144 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Related CVEs

  1. Improper Access Control in an on-chip debug interface could allow a privileged attacker to enable a debug interface and potentially compromise data confidentiality or integrity.CVE-2025-52533
  2. Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a Physically Proximate Attacker to access the internal components of the appliance, without leaving tamper evidence. To exploit this, the attacker needs to remove the tamper label and all fixing screws from the device without damaging it. This is called an F14 attack.CVE-2025-59703
  3. Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a user with OS root access to alter firmware on the Chassis Management Board (without Authentication). This is called F04.CVE-2025-59695
  4. The Chassis Management Board in Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allows a physically proximate attacker to obtain debug access and escalate privileges by bypassing the tamper label and opening the chassis without leaving evidence, and accessing the JTAG connector. This is called F02.CVE-2025-59693
  5. A vulnerability exists in F5OS-A software that allows a highly privileged authenticated attacker to access sensitive FIPS hardware security module (HSM) information on F5 rSeries systems.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.CVE-2025-53860

References

Sources include official advisories and independent security research.