IBM Planning Analytics Advanced Certified Containers 3.1.0 through 3.1.4 could allow a local privileged user to obtain sensitive information from environment variables.

Metrics

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

Vendors Products
Ibm
  • Planning Analytics Advanced Certified Containers

No data.

No data.

References
Link Providers
https://www.ibm.com/support/pages/node/7262806 cve-icon
History

Tue, 10 Mar 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 10 Mar 2026 01:15:00 +0000

Type Values Removed Values Added
Description IBM Planning Analytics Advanced Certified Containers 3.1.0 through 3.1.4 could allow a local privileged user to obtain sensitive information from environment variables.
Title IBM Planning Analytics Advanced Certified Containers is vulnerable to a sensitive information disclosure vulnerability
First Time appeared Ibm
Ibm planning Analytics Advanced Certified Containers
Weaknesses CWE-526
CPEs cpe:2.3:a:ibm:planning_analytics_advanced_certified_containers:3.1.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:planning_analytics_advanced_certified_containers:3.1.4:*:*:*:*:*:*:*
Vendors & Products Ibm
Ibm planning Analytics Advanced Certified Containers
References
Metrics cvssV3_1

{'score': 4.4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N'}
cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2026-03-10T00:50:05.709Z

Updated: 2026-03-10T13:53:33.217Z

Reserved: 2025-04-15T21:16:16.298Z

Link: CVE-2025-36105

cve-icon Vulnrichment

Updated: 2026-03-10T13:53:28.261Z

cve-icon NVD

No data.

cve-icon Redhat

No data.