← Volver a CVEs
CVE-2025-25046
LOW3.7
Descripcion
IBM InfoSphere Information Server 11.7 DataStage Flow Designer transmits sensitive information via URL or query parameters that could be exposed to an unauthorized actor using man in the middle techniques.
Detalles CVE
Puntuacion CVSS v3.13.7
SeveridadLOW
Vector CVSSCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Vector de ataqueNETWORK
ComplejidadHIGH
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado4/23/2025
Ultima modificacion8/12/2025
Fuentenvd
Avistamientos honeypot0
Productos afectados
ibm:infosphere_information_server
Debilidades (CWE)
CWE-319
Referencias
https://www.ibm.com/support/pages/node/7231333(psirt@us.ibm.com)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.