CVE-2025-36057

IBM Cognos Analytics Mobile (iOS) authentication bypass

CVSS 5.2 MEDIUMEPSS 0.2%CWE-299

IBM Cognos Analytics Mobile (iOS) 1.1.0 through 1.1.22 is vulnerable to authentication bypass by using the Local Authentication Framework library which is not needed as biometric authentication is not used in the application.

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

Produtos afetados

IBM · Cognos Analytics Mobile

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.ibm.com/support/pages/node/7239635