CVE-2025-36357 – IBM Planning Analytics Local Directory Traversal

CVE ID : CVE-2025-36357

Published : Nov. 17, 2025, 8:15 p.m. | 49 minutes ago

Description : IBM Planning Analytics Local 2.1.0 through 2.1.14 could allow a remote authenticated user to traverse directories on the system. An attacker could send a specially crafted URL request containing absolute path sequences to view, read, or write arbitrary files on the system.

Severity: 8.0 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…