PT-2026-25950 · Ibm · Ibm Planning Analytics Local
Published
2026-03-13
·
Updated
2026-03-18
·
CVE-2025-14806
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:L/Au:S/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Planning Analytics Local versions 2.1.0 through 2.1.17
Description
The software’s caching mechanism can be manipulated to store and serve sensitive, user-specific responses as publicly cacheable resources. This could allow an attacker to access sensitive information.
Recommendations
Update to a version of IBM Planning Analytics Local later than 2.1.17.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Planning Analytics Local