CVE-2025-36126 | IBM Cognos Analytics/Cognos Transformer up to 3.2.4.15/12.0/12.1.0 cross site scripting
A vulnerability was found in IBM Cognos Analytics and Cognos Transformer up to 3.2.4.15/12.0/12.1.0. It has been classified as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting.
This vulnerability is traded as CVE-2025-36126. It is possible to initiate the attack remotely. There is no exploit available.
Upgrading the affected component is recommended.