Unrated severityNVD Advisory· Published Dec 8, 2025· Updated Dec 9, 2025

IBM Controller Information Disclosure

CVE-2025-33111

Description

IBM Controller 11.1.0 through 11.1.1 and IBM Cognos Controller 11.0.0 through 11.0.1 FP6 is vulnerable to creation of temporary files without atomic operations which may expose sensitive information to an authenticated user due to race condition attacks.

Affected products

IBM/Cognos Controllerv5
cpe:2.3:a:ibm:cognos_controller:11.0.0:*:*:*:*:*:*:*
Range: 11.0.0
IBM/Controllerv5
cpe:2.3:a:ibm:controller:11.1.0:*:*:*:*:*:*:*
Range: 11.1.0
IBM/Cognos Controllerllm-fuzzy
Range: >=11.1.0 <=11.1.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.ibm.com/support/pages/node/7253273mitrevendor-advisorypatch

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000