← Voltar para CVEs
CVE-2025-25046
LOW3.7
Descricao
IBM InfoSphere Information Server 11.7 DataStage Flow Designer transmits sensitive information via URL or query parameters that could be exposed to an unauthorized actor using man in the middle techniques.
Detalhes CVE
Pontuacao CVSS v3.13.7
SeveridadeLOW
Vetor CVSSCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Vetor de ataqueNETWORK
ComplexidadeHIGH
Privilegios necessariosNONE
Interacao do usuarioNONE
Publicado4/23/2025
Ultima modificacao8/12/2025
Fontenvd
Avistamentos honeypot0
Produtos afetados
ibm:infosphere_information_server
Fraquezas (CWE)
CWE-319
Referencias
https://www.ibm.com/support/pages/node/7231333(psirt@us.ibm.com)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.