CVE-2024-41739
- EPSS 0.09%
- Veröffentlicht 24.01.2025 14:15:31
- Zuletzt bearbeitet 14.08.2025 18:57:34
IBM Cognos Dashboards 4.0.7 and 5.0.0 on Cloud Pak for Data could allow a remote attacker to perform unauthorized actions due to dependency confusion.
CVE-2023-38276
- EPSS 0.03%
- Veröffentlicht 22.10.2023 02:15:07
- Zuletzt bearbeitet 21.11.2024 08:13:13
IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive information in environment variables which could aid in further attacks against the system. IBM X-Force ID: 260736.
CVE-2023-38735
- EPSS 0.01%
- Veröffentlicht 22.10.2023 02:15:07
- Zuletzt bearbeitet 21.11.2024 08:14:08
IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 could allow a remote attacker to bypass security restrictions, caused by a reverse tabnabbing flaw. An attacker could exploit this vulnerability and redirect a victim to a phishing site. IBM X-Force ...
CVE-2023-38275
- EPSS 0.03%
- Veröffentlicht 22.10.2023 01:15:08
- Zuletzt bearbeitet 21.11.2024 08:13:13
IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive information in container images which could lead to further attacks against the system. IBM X-Force ID: 260730.