CVE-2025-27550
published 2026-02-04CVE-2025-27550: IBM Jazz Reporting Service could allow an authenticated user on the host network to obtain sensitive information about other projects that reside on the server.
low3.5CVSS 3.1
AVAACLPRLUINSUCLINAN
IBM Jazz Reporting Service could allow an authenticated user on the host network to obtain sensitive information about other projects that reside on the server.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | jazz_reporting_service | — | — |
| ibm | jazz_reporting_service | — | — |
| ibm | jazz_reporting_service | 7.0.3 – 7.0.3iFix020 | — |
| ibm | jazz_reporting_service | 7.1 – 7.1iFix006 | — |