Vulnerability Details CVE-2025-36262
IBM Planning Analytics Local 2.0.0 through 2.0.106 and 2.1.0 through 2.1.13
could allow a malicious privileged user to bypass the UI to gain unauthorized access to sensitive information due to the improper validation of input.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.1%
CVSS Severity
CVSS v3 Score 4.9
Products affected by CVE-2025-36262
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.0
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.1
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.2
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.3
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.4
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.9
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.9.1
-
cpe:2.3:a:ibm:planning_analytics_local:2.0.9.2
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.0
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.1
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.13
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.2
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.3
-
cpe:2.3:a:ibm:planning_analytics_local:2.1.4