IBM Planning Analytics Local
Moderate fix1 remedy
cpe:2.3:a:ibm:planning_analytics_local:*:*:*:*:*:*:*
Moderate fix1 remedy
- >= 2.1.0, <= 2.1.14
IBM Planning Analytics Local Absolute Path Traversal Vulnerability
Vulnerability
Patched
A directory traversal vulnerability has been identified in IBM Planning Analytics Local versions 2.1.0 through 2.1.14. This vulnerability allows remote authenticated users to traverse directories on the system by sending specially crafted URL requests with absolute path sequences. Exploitation of this vulnerability could lead to unauthorized viewing, reading, or writing of arbitrary files on the system.
Impact
Exploitation of this vulnerability could result in unauthorized access to files on the system, allowing for reading, modification, or potentially writing of sensitive information.
Remediation
Users are advised to upgrade to IBM Planning Analytics Local version 2.1.15, available for download from Fix Central.
Added: Nov 17, 2025, 8:18 PM
Updated: Nov 17, 2025, 8:18 PM