CVE-2025-36057

IBM Cognos Analytics Mobile (iOS) authentication bypass

CVSS 5.2 MEDIUMEPSS 0.2%CWE-299

IBM Cognos Analytics Mobile (iOS) 1.1.0 through 1.1.22 is vulnerable to authentication bypass by using the Local Authentication Framework library which is not needed as biometric authentication is not used in the application.

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

Productos afectados

IBM · Cognos Analytics Mobile

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.ibm.com/support/pages/node/7239635