CVE-2025-36187

{"id": "CVE-2025-36187", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "psirt@us.ibm.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.4, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 0.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.4, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 0.8}]}, "published": "2026-03-25T22:16:19.090", "references": [{"url": "https://www.ibm.com/support/pages/node/7267542", "tags": ["Vendor Advisory"], "source": "psirt@us.ibm.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "psirt@us.ibm.com", "description": [{"lang": "en", "value": "CWE-532"}]}], "descriptions": [{"lang": "en", "value": "IBM Knowledge Catalog Standard Cartridge 5.0.0, 5.0.1, 5.0.2, 5.0.3, 5.1, 5.1.1, 5,1.2, 5.1.3, 5.2.0, 5.2.1 stores potentially sensitive information in log files that could be read by a local privileged user."}, {"lang": "es", "value": "IBM Knowledge Catalog Standard Cartridge 5.0.0, 5.0.1, 5.0.2, 5.0.3, 5.1, 5.1.1, 5,1.2, 5.1.3, 5.2.0, 5.2.1 almacena informaci\u00f3n potencialmente sensible en archivos de registro que podr\u00eda ser le\u00edda por un usuario privilegiado local."}], "lastModified": "2026-03-31T20:22:17.383", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.0.0:*:*:*:standard:*:*:*", "vulnerable": true, "matchCriteriaId": "82345B79-8BBE-4197-9C31-FF2D164EE23D"}, {"criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.0.1:*:*:*:standard:*:*:*", "vulnerable": true, "matchCriteriaId": "EB2B20F0-A084-4A05-BAAF-B04E974B8DA1"}, {"criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.0.2:*:*:*:standard:*:*:*", "vulnerable": true, "matchCriteriaId": "2161D132-565C-452E-BBC4-DC9DC92E07FC"}, {"criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.0.3:*:*:*:standard:*:*:*", "vulnerable": true, "matchCriteriaId": "59B73621-2D7A-473B-9EEA-5C62907A4EA1"}, {"criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.1:*:*:*:standard:*:*:*", "vulnerable": true, "matchCriteriaId": "A4D72C2A-C79F-4695-865F-AEBC8E698D88"}, {"criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.1.1:*:*:*:standard:*:*:*", "vulnerable": true, "matchCriteriaId": "CA8D4B80-6AD5-4A45-9292-7CA2C6D52E76"}, {"criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.1.2:*:*:*:standard:*:*:*", "vulnerable": true, "matchCriteriaId": "331B44D0-10DB-4E40-B8B9-AD1F656D532E"}, {"criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.1.3:*:*:*:standard:*:*:*", "vulnerable": true, "matchCriteriaId": "F5EA3551-53AF-4A70-8976-6F564413C580"}, {"criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.2.0:*:*:*:standard:*:*:*", "vulnerable": true, "matchCriteriaId": "5F267C03-F792-4FDD-9012-40B1F0388D26"}, {"criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.2.1:*:*:*:standard:*:*:*", "vulnerable": true, "matchCriteriaId": "C0457945-C0E2-42FE-B2A0-618458FB7E9E"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:redhat:openshift:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "22EB28CE-7C7F-4290-85FE-5E3EBF905CF0"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt@us.ibm.com"}