Ibm

Cognos Express

4 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2013-5443

  • EPSS 0.14%
  • Published 25.03.2014 20:55:06
  • Last modified 12.04.2025 10:46:40

Cross-site request forgery (CSRF) vulnerability in IBM Cognos Express 9.0 before IFIX 2, 9.5 before IFIX 2, 10.1 before IFIX 2, and 10.2.1 before FP1 allows remote attackers to hijack the authentication of arbitrary users.

5

CVE-2013-5444

  • EPSS 0.36%
  • Published 25.03.2014 20:55:06
  • Last modified 12.04.2025 10:46:40

The server in IBM Cognos Express 9.0 before IFIX 2, 9.5 before IFIX 2, 10.1 before IFIX 2, and 10.2.1 before FP1 allows remote attackers to read encrypted credentials via unspecified vectors.

5

CVE-2013-5445

  • EPSS 0.34%
  • Published 25.03.2014 20:55:06
  • Last modified 12.04.2025 10:46:40

IBM Cognos Express 9.0 before IFIX 2, 9.5 before IFIX 2, 10.1 before IFIX 2, and 10.2.1 before FP1 allows local users to obtain sensitive cleartext information by leveraging knowledge of a static decryption key.

7.5

CVE-2010-0557

  • EPSS 79.4%
  • Published 05.02.2010 22:30:02
  • Last modified 11.04.2025 00:51:21

IBM Cognos Express 9.0 allows attackers to obtain unspecified access to the Tomcat Manager component, and cause a denial of service, by leveraging hardcoded credentials.