HomeIbmCVE-2025-36187

CVE-2025-36187

MEDIUM
4.4CVSS
Published: 2026-03-25
Updated: 2026-03-31
AI Analysis

Description

IBM Knowledge Catalog Standard Cartridge 5.0.0, 5.0.1, 5.0.2, 5.0.3, 5.1, 5.1.1, 5,1.2, 5.1.3, 5.2.0, 5.2.1 stores potentially sensitive information in log files that could be read by a local privileged user.

CVSS Metrics

Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Attack Vector
local
Complexity
low
Privileges
high
User Action
none
Scope
unchanged
Confidentiality
high
Integrity
none
Availability
none
Weaknesses
CWE-532

Metadata

Primary Vendor
IBM
Published
3/25/2026
Last Modified
3/31/2026
Source
NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

ibm : knowledge_catalogibm : knowledge_catalogibm : knowledge_catalogibm : knowledge_catalogibm : knowledge_catalogibm : knowledge_catalogibm : knowledge_catalogibm : knowledge_catalogibm : knowledge_catalogibm : knowledge_catalog

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD
CVE-CVE-2025-36187 | MEDIUM Severity | CVEDatabase.com | CVEDatabase.com