CPE-65BCF6FA-1EEA-4C50-B2C2-0C2F60F28757 Detail

CPE Details

IBM Cognos Analytics 11.0.4.0

Vendor

ibm

Product

cognos_analytics

Version

11.0.4.0

Created

2017-04-07
10h27 +00:00

Modified

2019-09-30
13h39 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:ibm:cognos_analytics:11.0.4.0:::::::*

Informations

Vendor

ibm

Product

cognos_analytics

Version

11.0.4.0

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2021-20461	2021-06-30 13h25 +00:00	IBM Cognos Analytics 10.0 and 11.1 is susceptible to a weakness in the implementation of the System Appearance configuration setting. An attacker could potentially bypass business logic to modify the appearance and behavior of the application. IBM X-Force ID: 196770.	6.5	Medium
CVE-2020-4388	2020-10-12 13h20 +00:00	IBM Cognos Analytics 11.0 and 11.1 could be vulnerable to a denial of service attack by failing to catch exceptions in a servlet also exposing debug information could also be used in future attacks. IBM X-Force ID: 179270.	8.2	High
CVE-2020-4302	2020-10-12 13h20 +00:00	IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to execute arbitrary code on the system, caused by a CSV injection. By persuading a victim to open a specially-crafted excel file, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 176610.	7.8	High
CVE-2019-4729	2020-04-27 13h25 +00:00	IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 172519.	4.3	Medium
CVE-2019-4555	2019-12-20 16h25 +00:00	IBM Cognos Analytics 11.0 and 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 166204.	5.4	Medium
CVE-2019-4231	2019-12-20 16h25 +00:00	IBM Cognos Analytics 11.0 and 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 159356.	4.3	Medium
CVE-2019-4178	2019-04-15 14h55 +00:00	IBM Cognos Analytics 11 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request to write or view arbitrary files on the system. IBM X-Force ID: 158919.	9.1	Critical
CVE-2018-1842	2018-11-09 00h00 +00:00	IBM Cognos Analytics 11 Configuration tool, under certain circumstances, will bypass OIDC namespace signature verification on its id_token. IBM X-Force ID: 150902.	3.6	Low
CVE-2018-1413	2018-05-07 13h00 +00:00	IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 138819.	5.4	Medium

IBM Cognos Analytics 11.0.4.0

CPE Details

CPE Name: cpe:2.3:a:ibm:cognos_analytics:11.0.4.0:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:ibm:cognos_analytics:11.0.4.0:::::::*