CVE-2025-14790

| EUVD-2025-209010 MEDIUM
2026-03-25 ibm
6.5
CVSS 3.1
Share

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

4
EUVD ID Assigned
Mar 25, 2026 - 20:17 euvd
EUVD-2025-209010
Analysis Generated
Mar 25, 2026 - 20:17 vuln.today
Patch Released
Mar 25, 2026 - 20:17 nvd
Patch available
CVE Published
Mar 25, 2026 - 20:06 nvd
MEDIUM 6.5

Tags

IBM Information Disclosure

Description

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow an attacker to obtain sensitive information due to insufficiently protected credentials.

Analysis

IBM InfoSphere Information Server versions 11.7.0.0 through 11.7.1.6 contain a credential protection vulnerability that allows authenticated attackers to extract sensitive information without requiring user interaction. An attacker with valid login credentials can exploit insufficiently protected credential storage mechanisms to obtain additional sensitive data, compromising confidentiality. A patch is available from IBM, and this vulnerability affects enterprise data integration infrastructure used by organizations managing information governance and metadata.

Technical Context

The vulnerability stems from CWE-522 (Insufficiently Protected Credentials), a root cause classification indicating that credentials or sensitive authentication data are stored or transmitted without adequate cryptographic protection or access controls. IBM InfoSphere Information Server is an enterprise-grade data integration and governance platform that handles sensitive credential material for database connections, API authentication, and system access. The affected versions (11.7.0.0 through 11.7.1.6) fail to properly encrypt or protect credential data at rest or during transit, allowing authenticated users with access to the application's configuration, logs, or memory space to retrieve plaintext or weakly encrypted credentials. This is particularly severe in InfoSphere because the platform typically manages credentials for multiple downstream systems, creating a credential cascade risk where compromise of one system's credentials could lead to lateral movement across an organization's data infrastructure.

Affected Products

IBM InfoSphere Information Server is affected in versions 11.7.0.0 through 11.7.1.6, as identified by the CPE cpe:2.3:a:ibm:infosphere_information_server. Organizations running any version within this range are vulnerable to credential disclosure. A patch has been released by IBM, and detailed remediation guidance is available at the vendor's support page located at https://www.ibm.com/support/pages/node/7266688, which provides the specific patch version and upgrade instructions.

Remediation

Upgrade IBM InfoSphere Information Server to version 11.7.1.7 or later (consult the IBM security advisory at https://www.ibm.com/support/pages/node/7266688 for the exact patched version). Until patching can be completed, implement compensating controls by restricting network access to the InfoSphere application and its administrative interfaces to trusted IP ranges and VPNs, enforcing multi-factor authentication for all user access, regularly auditing credential usage and access logs for suspicious activity, and rotating all credentials managed by affected InfoSphere instances immediately. Additionally, monitor the application's configuration and data directories for unauthorized access, and consider implementing application-level encryption for stored credentials as a temporary measure.

Priority Score

33
Low Medium High Critical
KEV: 0
EPSS: +0.0
CVSS: +32
POC: 0

Share

CVE-2025-14790 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy