Vulnerability Details CVE-2025-36262
IBM Planning Analytics Local 2.0.0 through 2.0.106 and 2.1.0 through 2.1.13
could allow a malicious privileged user to bypass the UI to gain unauthorized access to sensitive information due to the improper validation of input.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.9%
CVSS Severity
CVSS v3 Score 4.9
Products affected by CVE-2025-36262
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.0
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.1
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.2
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.3
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.4
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.9
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.9.1
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.9.2
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.0
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.1
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.2
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.3
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.4