CVE-2025-36102
2.7LOWIBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 could allow a privileged user to bypass validation, passing user input into the application as trusted data, du
Publicado: 12/8/2025Actualizado: 12/10/2025
Descripción
IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 could allow a privileged user to bypass validation, passing user input into the application as trusted data, due to client-side enforcement of server-side security.
Análisis IAImpulsado por IA
Productos Afectados
ibmcognos_controller
ibmcontroller
Referencias
- https://www.ibm.com/support/pages/node/7253273Vendor Advisory