CVE-2026-1015 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2026-1015

Analyzed

More Info Official Page

Source-psirt@us.ibm.com

Published At-25 Mar, 2026 | 21:16

Updated At-26 Mar, 2026 | 18:14

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	5.4	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Type: Primary

Version: 3.1

Base score: 5.4

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

CPE Matches

IBM Corporation

>>infosphere_information_server>>Versions from 11.7.0.0(inclusive) to 11.7.1.6(inclusive)

cpe:2.3:a:ibm:infosphere_information_server:*:*:*:*:*:*:*:*

IBM Corporation

>>aix>>-

cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*

Linux Kernel Organization, Inc

>>linux_kernel>>-

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

Microsoft Corporation

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-918	Primary	psirt@us.ibm.com

CWE ID: CWE-918

Type: Primary

Source: psirt@us.ibm.com

References

Hyperlink	Source	Resource
https://www.ibm.com/support/pages/node/7266740	psirt@us.ibm.com	Vendor Advisory

Hyperlink: https://www.ibm.com/support/pages/node/7266740

Source: psirt@us.ibm.com

Resource:

Vendor Advisory