Information Disclosure Vulnerability in IBM Jazz Reporting Service
CVE-2025-27550

3.5LOW

Key Information:

Vendor: IBM
Status: Jazz Reporting Service
Vendor: CVE Published:; 4 February 2026

What is CVE-2025-27550?

An information disclosure vulnerability in IBM Jazz Reporting Service allows an authenticated user on the host network to access sensitive information from other projects hosted on the same server. This could lead to unauthorized access to confidential data, impacting data privacy and security for affected organizations. Proper patching and security measures are essential to mitigate the risks associated with this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Jazz Reporting Service 7.1 <= 7.1iFix006

Jazz Reporting Service 7.0.3 <= 7.0.3iFix020

References

https://www.ibm.com/support/pages/node/7258083

vendor-advisorypatch

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 4, 2026
Vulnerability Reserved
Feb 28, 2025

JSON

IBM