Vulnerability Details CVE-2025-14806
IBM Planning Analytics Local 2.1.0 through 2.1.17 could allow an attacker to trick the caching mechanism into storing and serving sensitive, user-specific responses as publicly cacheable resources.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.4%
CVSS Severity
CVSS v3 Score 5.7
Products affected by CVE-2025-14806
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.0
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.1
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.13
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.14
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.15
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.2
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.3
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.4
-
cpe:2.3:o:microsoft:windows:-