Skip to main content

Infosphere Information Server CVE-2026-1567

HIGH
Improper Restriction of XML External Entity Reference (CWE-611)
2026-03-03 psirt@us.ibm.com
7.1
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.1 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
High

Lifecycle Timeline

2
Analysis Generated
Mar 12, 2026 - 22:05 vuln.today
CVE Published
Mar 03, 2026 - 21:15 nvd
HIGH 7.1

DescriptionCVE.org

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 An XML External Entity (XXE) vulnerability in IBM InfoSphere Information Server could allow attackers to retrieve sensitive information from the server.

AnalysisAI

Infosphere Information Server versions up to 11.7.1.6 is affected by improper restriction of xml external entity reference (CVSS 7.1).

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Authenticate with low-privilege InfoSphere account
Exploit
Submit XML payload with external entity reference
Execution
Server parses XXE definition
Impact
Extract sensitive files or cause denial of service

Vulnerability AssessmentAI

Exploitation Requires valid low-privilege user credentials for IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6; attacker must submit malicious XML to a component that processes external entities without proper validation. Additional conditions and limiting factors are described in the full assessment.
Risk Assessment CVSS 7.1 (HIGH). … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker could exploit this vulnerability to retrieve sensitive information from the server.
Remediation Monitor vendor advisories for a patch. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Identify all systems running Infosphere Information Server versions ≤11.7.1.6 and restrict network access to trusted sources only. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2024-51459 HIGH
8.4 Mar 19

IBM InfoSphere Information Server 11.7 could allow a local user to execute privileged commands due to the improper handl

CVE-2025-0966 HIGH
7.6 Jun 25

CVE-2025-0966 is a SQL injection vulnerability in IBM InfoSphere Information Server 11.7 that allows authenticated remot

CVE-2025-3221 HIGH
7.5 Jun 21

IBM InfoSphere Information Server versions 11.7.0.0 through 11.7.1.6 contain a denial of service vulnerability caused by

CVE-2025-1499 MEDIUM
6.5 Jun 01

IBM InfoSphere Information Server 11.7 stores credential information for database authentication in a cleartext paramete

CVE-2024-22351 MEDIUM
6.3 Apr 23

IBM InfoSphere Information 11.7 Server does not invalidate session after logout which could allow an authenticated user

CVE-2024-43186 MEDIUM
5.3 Mar 29

IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information that is stored

CVE-2025-36034 MEDIUM
5.3 Jun 26

IBM InfoSphere DataStage Flow Designer in IBM InfoSphere Information Server 11.7 discloses sensitive user information in

CVE-2025-12832 MEDIUM
4.6 Dec 08

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to server-side request forgery (SSRF). This ma

CVE-2024-7577 MEDIUM
4.4 Mar 29

IBM InfoSphere Information Server 11.7 could disclose sensitive user credentials from log files during new installation

CVE-2024-51477 MEDIUM
4.3 Mar 29

IBM InfoSphere Information Server 11.7 could allow an authenticated to obtain sensitive username information due to an o

CVE-2025-25045 MEDIUM
4.3 Apr 23

IBM InfoSphere Information 11.7 Server authenticated user to obtain sensitive information when a detailed technical erro

CVE-2025-3629 MEDIUM
4.3 Jun 21

CVE-2025-3629 is a security vulnerability (CVSS 4.3) that allows an authenticated user. Remediation should follow standa

Share

CVE-2026-1567 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy