CVE-2025-36106HIGH 8.2EPSS p7.5%

CVE-2025-36106CVE-2025-36106

Description

IBM Cognos Analytics Mobile (iOS) 1.1.0 through 1.1.22 could allow malicious actors to view and modify information coming to and from the application which could then be used to access confidential information on the device or network by using a the deprecated or misconfigured AFNetworking library at runtime.

Scoring

CVSS 3.18.2 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
EPSS0.18% probability of exploitation · percentile 7.5% · 2026-06-18T12:00:27Z
Published2025-07-21
Last modified2025-08-07

Underlying weaknesses· 1

CWE-326

References

  1. https://www.ibm.com/support/pages/node/7239635

1

TypeTargetConfidenceTier
WeaknessInadequate Encryption Strengthcwe-3260%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-3633
CVE
CVE-2025-36126
CVE
CVE-2025-36174
CVE
CVE-2025-31214
CVE
CVE-2025-36361
CVE
CVE-2025-36386
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.