Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm cognos business intelligence 10.2.1.1 vulnerabilities and exploits
(subscribe to this query)
7
CVSSv3
CVE-2017-1764
IBM Cognos Business Intelligence 10.2, 10.2.1, 10.2.1.1, and 10.2.2, under specialized circumstances, could expose plain text credentials to a local user. IBM X-Force ID: 136149.
Ibm Cognos Business Intelligence 10.2.1
Ibm Cognos Business Intelligence 10.2.1.1
Ibm Cognos Business Intelligence 10.2.2
Ibm Cognos Business Intelligence 10.2
8.8
CVSSv3
CVE-2016-8960
IBM Cognos Business Intelligence 10.2 could allow a user with lower privilege Capabilities to adopt the Capabilities of a higher-privilege user by intercepting the higher-privilege user's cookie value from its HTTP request and then reusing it in subsequent requests. IBM Refe...
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.1.1
Ibm Cognos Business Intelligence 10.2.2
Ibm Cognos Business Intelligence 10.2.1
6.1
CVSSv3
CVE-2017-1486
IBM Cognos Business Intelligence 10.2, 10.2.1, 10.2.1.1, and 10.2.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure withi...
Ibm Cognos Business Intelligence 10.2.2
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.1
Ibm Cognos Business Intelligence 10.2.1.1
NA
CVE-2014-6145
Cross-site scripting (XSS) vulnerability in the server in IBM Cognos Business Intelligence 10.1 before IF10, 10.1.1 before IF9, 10.2 before IF11, 10.2.1 before IF8, and 10.2.1.1 before IF7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Cognos Business Intelligence 10.1
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.1
Ibm Cognos Business Intelligence 10.2.1.1
5.4
CVSSv3
CVE-2016-0221
Cross-site scripting (XSS) vulnerability in IBM Cognos TM1, as used in IBM Cognos Business Intelligence 10.2 before IF20, 10.2.1 before IF17, 10.2.1.1 before IF16, 10.2.2 before IF12, and 10.1.1 before IF19, allows remote authenticated users to inject arbitrary web script or HTML...
Ibm Cognos Business Intelligence 10.2.1.1
Ibm Cognos Business Intelligence 10.2.1
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2.2
6.5
CVSSv3
CVE-2016-0254
IBM Cognos Business Intelligence 10.1 and 10.2 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote authenticated attacker could exploit this vulnerability to consume all available CPU resources and cause ...
Ibm Cognos Business Intelligence 10.2.1
Ibm Cognos Business Intelligence 10.2.2
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.1.1
5.4
CVSSv3
CVE-2016-0218
IBM Cognos Business Intelligence and IBM Cognos Analytics are vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim's Web browse...
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2.1.1
Ibm Cognos Business Intelligence 10.2.2
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.1
5.4
CVSSv3
CVE-2016-0346
Cross-site scripting (XSS) vulnerability in IBM Cognos Business Intelligence 10.2 before IF20, 10.2.1 before IF17, 10.2.1.1 before IF16, 10.2.2 before IF12, and 10.1.1 before IF19 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2.2
Ibm Cognos Business Intelligence 10.2.1.1
Ibm Cognos Business Intelligence 10.2.1
NA
CVE-2013-3030
The servlet gateway in IBM Cognos Business Intelligence 8.4.1 before IF3, 10.1.0 before IF4, 10.1.1 before IF4, 10.2.0 before IF4, 10.2.1 before IF2, and 10.2.1.1 before IF1 allows remote malicious users to cause a denial of service (temporary gateway outage) via crafted HTTP req...
Ibm Cognos Business Intelligence 10.2.1.1
Ibm Cognos Business Intelligence 8.4.1
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.1
Ibm Cognos Business Intelligence 10.1
Ibm Cognos Business Intelligence 10.1.1
NA
CVE-2013-4034
IBM Cognos Business Intelligence 8.4.1 before IF3, 10.1.0 before IF4, 10.1.1 before IF4, 10.2.0 before IF4, 10.2.1 before IF2, and 10.2.1.1 before IF1 allows remote authenticated users to read arbitrary files via an XML external entity declaration in conjunction with an entity re...
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.1
Ibm Cognos Business Intelligence 10.2.1.1
Ibm Cognos Business Intelligence 8.4.1
Ibm Cognos Business Intelligence 10.1
Ibm Cognos Business Intelligence 10.1.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »