216.73.216.214

CVE-2025-36017

· Published 08/12/2025 22:15 · Modified 10/12/2025 18:08

Labels: CVE-2025-36017 2025-12-08CVE-2025-36017CWE-526[email protected]

Essential information

Published
08/12/2025 22:15
Modified
10/12/2025 18:08
Author
Creator
CVSS
6.5 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVSS metrics

Description

IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 stores unencrypted sensitive information in environmental variables files which can be obtained by an authenticated user.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
ibm / controller cpe:2.3:a:ibm:controller:*:*:*:*:*:*:*:*

References