6.5
CVE-2025-36015
- EPSS 0.07%
- Veröffentlicht 08.12.2025 21:22:45
- Zuletzt bearbeitet 10.12.2025 18:11:53
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
IBM Controller Denial of Service
IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 could allow an authenticated user to cause a denial of service due to improper validation of a specified quantity size input.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Cognos Controller Version >= 11.0.0 < 11.0.1.7
Ibm ≫ Controller Version >= 11.1.0 < 11.1.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.07% | 0.206 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@us.ibm.com | 6.5 | 2.8 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-1284 Improper Validation of Specified Quantity in Input
The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.