Security Advisory

CVE-2025-36132

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-30 19:41:19
Last updated 2025-09-30 20:40:56
Assigner ibm
State PUBLISHED

Description

IBM Planning Analytics Local 2.0.0 through 2.0.106 and 2.1.0 through 2.1.13 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.