← back
CVE-2025-36057

IBM Cognos Analytics Mobile (iOS) authentication bypass

CVSS 5.2 MEDIUMEPSS 0.2%CWE-299
IBM Cognos Analytics Mobile (iOS) 1.1.0 through 1.1.22 is vulnerable to authentication bypass by using the Local Authentication Framework library which is not needed as biometric authentication is not used in the application.
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Affected products
IBM · Cognos Analytics Mobile

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.ibm.com/support/pages/node/7239635