Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cognos business intelligence vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2012-4837
IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 allows remote authenticated users to conduct XPath injection attacks, and read arbitrary XML files, via unspecified vectors.
Ibm Cognos Business Intelligence 10.1
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 8.4.1
5
CVSSv2
CVE-2012-4840
IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 allows remote malicious users to conduct XPath injection attacks, and call XPath extension functions, via unspecified vectors.
Ibm Cognos Business Intelligence 8.4.1
Ibm Cognos Business Intelligence 10.1
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2
9.3
CVSSv2
CVE-2012-4858
IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 does not properly validate Java serialized input, which allows remote malicious users to execute arbitrary commands via unspecified vectors.
Ibm Cognos Business Intelligence 8.4.1
Ibm Cognos Business Intelligence 10.1
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2
5
CVSSv2
CVE-2016-9710
IBM Predictive Solutions Foundation (formerly PMQ) could allow a remote malicious user to include arbitrary files. A remote attacker could send a specially-crafted URL to specify a file from the local system, which could allow the malicious user to obtain sensitive information. I...
Ibm Cognos Business Intelligence Server 10.2.1
Ibm Cognos Business Intelligence Server 10.2.1.1
Ibm Cognos Business Intelligence Server 10.2.2
Ibm Cognos Business Intelligence Server 10.1.1
Ibm Cognos Business Intelligence Server 10.2.0
2.1
CVSSv2
CVE-2017-1125
IBM Cognos Analytics 10.1 and 10.2 could allow a local user to craft a URL which could confirm the existence of and expose postial contents of a file. IBM X-Force ID: 121340.
Ibm Cognos Business Intelligence Server 10.2.1.1
Ibm Cognos Business Intelligence Server 10.2.1
Ibm Cognos Business Intelligence Server 10.2.0
Ibm Cognos Business Intelligence Server 10.1.1
Ibm Cognos Business Intelligence Server 10.2.2
3.5
CVSSv2
CVE-2016-3037
IBM Cognos TM1 10.1 and 10.2 provides a service to return the victim's password with a valid session key. An authenticated attacker with user interaction could obtain this sensitive information. IBM X-Force ID: 114613.
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.1
Ibm Cognos Business Intelligence 10.2.2
5
CVSSv2
CVE-2016-3036
IBM Cognos TM1 10.1 and 10.2 is vulnerable to a denial of service, caused by a stack-based buffer overflow when parsing packets. A remote attacker could exploit this vulnerability to cause a denial of service. IBM X-Force ID: 114612.
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.2
Ibm Cognos Business Intelligence 10.1
3.5
CVSSv2
CVE-2016-3038
IBM Cognos TM1 10.1 and 10.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 11...
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.2
Ibm Cognos Business Intelligence 10.1
2.1
CVSSv2
CVE-2016-9985
IBM Cognos Server 10.1.1 and 10.2 stores highly sensitive information in log files that could be read by a local user. IBM Reference #: 1999671.
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.1.1
4
CVSSv2
CVE-2012-4847
IBM Cognos Business Intelligence (BI) 8.4 and 8.4.1 allows remote authenticated users to cause a denial of service (CPU consumption) via a crafted request containing a zero-valued byte.
Ibm Cognos Business Intelligence 8.4.1
Ibm Cognos Business Intelligence 8.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »