Security Advisory

CVE-2025-36357

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-17 20:07:00
Last updated 2026-02-26 16:56:55
Assigner ibm
State PUBLISHED

Description

IBM Planning Analytics Local 2.1.0 through 2.1.14 could allow a remote authenticated user to traverse directories on the system. An attacker could send a specially crafted URL request containing absolute path sequences to view, read, or write arbitrary files on the system.