CVE-2025-36262

Medium

IBM Planning Analytics Local 2.0.0 through 2.0.106 and 2.1.0 through 2.1.13 could allow a malicious privileged user to bypass the UI to…

ibm·CWE-1286·Published 2025-09-30

CVSS

4.9

EPSS

0.00

KEV

Exploits

cve.orgen

228 chars

IBM Planning Analytics Local 2.0.0 through 2.0.106 and 2.1.0 through 2.1.13 could allow a malicious privileged user to bypass the UI to gain unauthorized access to sensitive information due to the improper validation of input.

NVDen

228 chars

NVDes

257 chars

IBM Planning Analytics Local 2.0.0 hasta 2.0.106 y 2.1.0 hasta 2.1.13 podría permitir a un usuario privilegiado malicioso eludir la interfaz de usuario para obtener acceso no autorizado a información sensible debido a la validación incorrecta de la entrada.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	4.9	—	—	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
3.1	Secondary	NVD	4.9	1.2	3.6	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N