Ibm

Cognos Analytics

102 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2017-1779

  • EPSS 0.1%
  • Published 29.01.2018 16:29:00
  • Last modified 21.11.2024 03:22:21

IBM Cognos Analytics 11.0 could store cached credentials locally that could be obtained by a local user. IBM X-Force ID: 136824.

4

CVE-2017-1783

  • EPSS 0.09%
  • Published 29.01.2018 16:29:00
  • Last modified 21.11.2024 03:22:21

IBM Cognos Analytics 11.0 could allow a local user to change parameters set from the Cognos Analytics menus without proper authentication. IBM X-Force ID: 136857.

5.5

CVE-2017-1784

  • EPSS 0.15%
  • Published 29.01.2018 16:29:00
  • Last modified 21.11.2024 03:22:21

IBM Cognos Analytics 11.0 could produce results in temporary files that contain highly sensitive information that can be read by a local user. IBM X-Force ID: 136858.

6.1

CVE-2017-1427

  • EPSS 0.29%
  • Published 29.08.2017 21:29:00
  • Last modified 20.04.2025 01:37:25

IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted ...

6.1

CVE-2017-1428

  • EPSS 0.26%
  • Published 29.08.2017 21:29:00
  • Last modified 20.04.2025 01:37:25

IBM Cognos Analytics 11.0 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and pos...

5.4

CVE-2017-1485

  • EPSS 0.2%
  • Published 29.08.2017 21:29:00
  • Last modified 20.04.2025 01:37:25

IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted ...

5.4

CVE-2017-1535

  • EPSS 0.27%
  • Published 29.08.2017 21:29:00
  • Last modified 20.04.2025 01:37:25

IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted ...

5.4

CVE-2016-3032

  • EPSS 0.24%
  • Published 10.05.2017 14:29:00
  • Last modified 20.04.2025 01:37:25

IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted ...

5.4

CVE-2016-3015

  • EPSS 0.26%
  • Published 05.04.2017 18:59:00
  • Last modified 20.04.2025 01:37:25

IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted ...

5.4

CVE-2016-3031

  • EPSS 0.26%
  • Published 05.04.2017 18:59:00
  • Last modified 20.04.2025 01:37:25

IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted ...