7.5
CVE-2025-25032
- EPSS 0.32%
- Veröffentlicht 11.06.2025 17:26:35
- Zuletzt bearbeitet 17.06.2025 20:33:07
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
IBM Cognos Analytics denial of service
IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3, and 12.0.4 could allow an authenticated user to cause a denial of service by sending a specially crafted request that would exhaust memory resources.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Cognos Analytics Version >= 11.2.0 <= 11.2.4
Ibm ≫ Cognos Analytics Version >= 12.0.0 <= 12.0.4
Ibm ≫ Cognos Analytics Version11.2.4 Updatefixpack1
Ibm ≫ Cognos Analytics Version11.2.4 Updatefixpack2
Ibm ≫ Cognos Analytics Version11.2.4 Updatefixpack3
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.32% | 0.236 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@us.ibm.com | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-770 Allocation of Resources Without Limits or Throttling
The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.
https://www.ibm.com/support/pages/node/7234674