CVE-2025-33005

Name of the Vulnerable Software and Affected Versions IBM Planning Analytics Local versions 2.0 through 2.1

Description The issue allows an authenticated user to impersonate another user on the system because the session is not invalidated after a logout.

Recommendations For versions 2.0 and 2.1, consider implementing a manual session invalidation mechanism after each logout to prevent impersonation until a patch is available. As a temporary workaround, restrict access to sensitive features that could be exploited by an impersonated user.