What is CVE-2024-25051?

CVE-2024-25051 is a medium-severity vulnerability in Ibm Jazz Reporting Service, classified under Insufficient Session Expiration. CVSS score: 6.6/10. Published 2025-04-02.

How severe is CVE-2024-25051?

Medium severity. CVSS v3 base score is 6.6 out of 10.

Vulnerability in Ibm Jazz Reporting Service

CVE-2024-25051

IBM Jazz Reporting Service 7.0.2 and 7.0.3 does not invalidate session after logout which could allow an authenticated privileged user to impersonate another user on the system.

EPSS: 0.002 (40.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.6 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H.

Affected products

Ibm Jazz Reporting Service — versions 7.0.2, 7.0.3

Weakness classification (CWE)

CWE-613 — Insufficient Session Expiration

References

www.ibm.com/support/pages/node/7229760 (vendor-advisory, patch)

Frequently asked questions

What is CVE-2024-25051?: CVE-2024-25051 is a medium-severity vulnerability in Ibm Jazz Reporting Service, classified under Insufficient Session Expiration. CVSS score: 6.6/10. Published 2025-04-02.
How severe is CVE-2024-25051?: Medium severity. CVSS v3 base score is 6.6 out of 10.