CVE-2025-36105
EUVD-2025-20845910.03.2026, 16:50
IBM Planning Analytics Advanced Certified Containers 3.1.0 through 3.1.4 could allow a local privileged user to obtain sensitive information from environment variables.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| ibm | planning_analytics_advanced_certified_containers | 3.1.0 ≤ 𝑥 < 3.1.5 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-526 - Exposure of Sensitive Information Through Environmental VariablesEnvironmental variables may contain sensitive information about a remote server.
- CWE-312 - Cleartext Storage of Sensitive InformationThe product stores sensitive information in cleartext within a resource that might be accessible to another control sphere.