Skip to main content

IBM CVE-2026-1014

| EUVDEUVD-2026-15976 MEDIUM
Cleartext Transmission of Sensitive Information (CWE-319)
2026-03-25 ibm GHSA-33j5-m5m2-w6hw
6.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
6.5 MEDIUM
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

4
EUVD ID Assigned
Mar 25, 2026 - 20:47 euvd
EUVD-2026-15976
Analysis Generated
Mar 25, 2026 - 20:47 vuln.today
Patch released
Mar 25, 2026 - 20:47 nvd
Patch available
CVE Published
Mar 25, 2026 - 20:40 nvd
MEDIUM 6.5

DescriptionCVE.org

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to exposure of sensitive information via JSON server response manipulation.

AnalysisAI

IBM InfoSphere Information Server versions 11.7.0.0 through 11.7.1.6 contain an information disclosure vulnerability caused by improper handling of JSON server responses, allowing authenticated attackers to expose sensitive data. The vulnerability requires low-complexity network access with valid credentials but does not require user interaction, making it accessible to any authenticated user with network connectivity. No evidence of active exploitation in the wild has been identified, though a patch is available from the vendor.

Technical ContextAI

The vulnerability stems from CWE-319 (Cleartext Transmission of Sensitive Information), indicating that IBM InfoSphere Information Server improperly handles JSON payloads in server responses without adequate protection mechanisms. The affected product is identified via CPE as cpe:2.3:a:ibm:infosphere_information_server, a data integration and governance platform that processes sensitive enterprise metadata and configuration data. The root cause involves manipulation of JSON server responses that allows authenticated users to bypass intended access controls or encryption mechanisms protecting sensitive information in transit or at rest. This is particularly concerning in information server architectures where JSON APIs are commonly used to transmit metadata, connection strings, database credentials, and other sensitive configuration data between client and server components.

RemediationAI

Organizations should upgrade IBM InfoSphere Information Server to version 11.7.1.7 or later, as specified in the IBM security bulletin at https://www.ibm.com/support/pages/node/7266736. Prior to applying patches, implement network segmentation to restrict InfoSphere Information Server access to trusted administrative networks and application servers only, disable unnecessary JSON API endpoints if configurable, and enable audit logging to detect suspicious access patterns from authenticated accounts. Apply principle of least privilege by reviewing and restricting user credentials with InfoSphere access, particularly service accounts. For organizations unable to patch immediately, monitor for suspicious JSON response manipulation attempts in application logs and consider implementing a Web Application Firewall (WAF) rule set to detect anomalous JSON payloads, though this is not a substitute for patching.

Share

CVE-2026-1014 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy