Vulnerability Database

296,202

Total vulnerabilities in the database

CVE-2025-25046

IBM InfoSphere Information Server 11.7 DataStage Flow Designer

transmits sensitive information via URL or query parameters that could be exposed to an unauthorized actor using man in the middle techniques.

Published: Apr 24, 2025
Updated: Apr 30, 2025
CVE: CVE-2025-25046
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 3.7
AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CWEs:

CWE-319

OWASP TOP 10:

A3 - Sensitive Data Exposure

Affected Software
References

Software	From	Fixed in
ibm / infosphere_information_server	11.7	11.7.x

https://www.ibm.com/support/pages/node/7231333