Security Bulletin: IBM Cognos Analytics Mobile (Android) is affected by a vulnerability in Babel (CVE-2025-27789)

Summary There is a vulnerability in Babel/helpers and Babel/runtime consumed by IBM Cognos Analytics Mobile Android CVE-2025-27789. This Security Bulletin relates only to the direct usage of third-party components by IBM Cognos Analytics Mobile and not any nested dependencies within the product...

Security Bulletin: Multiple Vulnerabilities in IBM Event Processing

Summary Multiple vulnerabilities were addressed in IBM Event Processing version 1.4.1 Vulnerability Details CVEID:CVE-2025-27789 DESCRIPTION: Babel is a compiler for writing next generation JavaScript. When using versions of Babel prior to 7.26.10 and 8.0.0-alpha.17 to compile regular expression...

CVE-2025-27789 Inefficient RexExp complexity in generated code with .replace when transpiling named capturing groups

Babel is a compiler for writing next generation JavaScript. When using versions of Babel prior to 7.26.10 and 8.0.0-alpha.17 to compile regular expression named capturing groups, Babel will generate a polyfill for the .replace method that has quadratic complexity on some specific replacement...