CVE-2025-36015
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-12-08
Last updated on: 2025-12-10
Assigner: IBM Corporation
Description
Description
IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 could allow an authenticated user to cause a denial of service due to improper validation of a specified quantity size input.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ibm | controller | 11.1.0 |
| ibm | cognos_controller | 11.0.1 |
| ibm | cognos_controller | 11.0.0 |
| ibm | controller | 11.1.1 |
| ibm | controller | From 11.1.0 (inc) to 11.1.2 (inc) |
| ibm | cognos_controller | From 11.0.0 (inc) to 11.0.1.7 (inc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-1284 | The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in IBM Controller and IBM Cognos Controller allows an authenticated user to cause a denial of service by exploiting improper validation of a specified quantity size input.
How can this vulnerability impact me? :
The vulnerability can lead to a denial of service condition, making the affected IBM Controller or IBM Cognos Controller systems unavailable or unresponsive to legitimate users.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70