CVE-2025-33150
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-11-10
Last updated on: 2025-12-12
Assigner: IBM Corporation
Description
Description
IBM Cognos Analytics Certified Containers 12.1.0 could disclose package parameter information due to the presence of hidden pages.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ibm | cognos_analytics_certified_containers | 12.1.0 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-552 | The product makes files or directories accessible to unauthorized actors, even though they should not be. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in IBM Cognos Analytics Certified Containers 12.1.0 involves the potential disclosure of package parameter information due to the presence of hidden pages within the application.
How can this vulnerability impact me? :
The vulnerability could lead to unauthorized disclosure of package parameter information, which may expose sensitive configuration details. This could potentially be used by attackers to gain insights into the system or application setup, increasing the risk of further exploitation.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70