Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.5
IBM InfoSphere Information Server exposes sensitive data through XML attacks
CVE-2026-1567
Summary
IBM InfoSphere Information Server versions 11.7.0.0 through 11.7.1.6 contain a flaw that could allow hackers to access sensitive information on the server, potentially leading to data theft. This is a serious issue, as it could compromise sensitive data and put your organization at risk. To protect yourself, update to a fixed version of IBM InfoSphere Information Server as soon as possible.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| ibm | infosphere_information_server | > 11.7 , <= 11.7.1.6 | – |
Original title
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 An XML External Entity (XXE) vulnerability in IBM InfoSphere Information Server could allow attackers to retrieve sensitive information f...
Original description
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 An XML External Entity (XXE) vulnerability in IBM InfoSphere Information Server could allow attackers to retrieve sensitive information from the server.
nvd CVSS3.1
7.5
Vulnerability type
CWE-611
XML External Entity (XXE)
- https://www.ibm.com/support/pages/node/7259630 Vendor Advisory
Published: 3 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026