CVE-2025-36107— IBM Cognos Analytics Mobile (iOS) information disclosure
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-36107
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Cognos Analytics Mobile (iOS) information disclosure
Source: NVD (National Vulnerability Database)
Vulnerability Description
IBM Cognos Analytics Mobile (iOS) 1.1.0 through 1.1.22 could allow malicious actors to obtain sensitive information due to the cleartext transmission of data.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
敏感数据的明文传输
Source: NVD (National Vulnerability Database)
Vulnerability Title
IBM Cognos Analytics Mobile 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
IBM Cognos Analytics Mobile是美国国际商业机器(IBM)公司的一个应用程序。集成了报告、建模、分析、仪表板、案例和事件管理。 IBM Cognos Analytics Mobile 1.1.0至1.1.22版本存在安全漏洞,该漏洞源于明文传输数据,可能导致敏感信息泄露。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| IBM | Cognos Analytics Mobile | 1.1.0 ~ 1.1.22 | cpe:2.3:a:ibm:cognos_analytics_mobile:1.1.0:*:*:*:*:ios:*:* |
II. Public POCs for CVE-2025-36107
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-36107
请登录查看更多情报信息。
Same Patch Batch · IBM · 2025-07-21 · 4 CVEs total
| CVE-2025-36106 | 6.5 MEDIUM | IBM Cognos Analytics Mobile (iOS) information disclosure |
| CVE-2025-36062 | 5.9 MEDIUM | IBM Cognos Analytics Mobile (iOS) information disclosure |
| CVE-2025-36057 | 5.2 MEDIUM | IBM Cognos Analytics Mobile (iOS) authentication bypass |
IV. Related Vulnerabilities
Same product: Cognos Analytics Mobile
- CVE-2025-36057
IBM Cognos Analytics Mobile (iOS) authentication bypass - CVE-2025-36062
IBM Cognos Analytics Mobile (iOS) information disclosure - CVE-2025-36106
IBM Cognos Analytics Mobile (iOS) information disclosure - CVE-2024-55907
IBM Cognos Mobile information disclosure - CVE-2025-0895
IBM Cognos Mobile information disclosure
Same vendor: IBM
- CVE-2026-1248
IBM Business Automation Workflow information leak - CVE-2026-7876
Authentication bypass vulnerability found in Aspera High-Spe - CVE-2026-7365
IBM Operations Analytics - Log Analysis is affected by Infor - CVE-2024-56462
IBM QRadar SIEM is vulnerable to using components with known - CVE-2024-40684
IBM Operations Analytics - Log Analysis is affected by Weak
Same weakness: CWE-319
V. Comments for CVE-2025-36107
No comments yet