Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cognos business intelligence vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2016-9985
IBM Cognos Server 10.1.1 and 10.2 stores highly sensitive information in log files that could be read by a local user. IBM Reference #: 1999671.
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.1.1
5.4
CVSSv3
CVE-2016-0217
IBM Cognos Business Intelligence and IBM Cognos Analytics are vulnerable to stored cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability to inject malicious script into a Web page which would be executed in ...
Ibm Cognos Analytics 11.0.3
Ibm Cognos Analytics 11.0.2
Ibm Cognos Analytics 11.0.1
Ibm Cognos Analytics 11.0.0
Ibm Cognos Analytics 11.0.4
5.4
CVSSv3
CVE-2016-0218
IBM Cognos Business Intelligence and IBM Cognos Analytics are vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim's Web browse...
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2.1.1
Ibm Cognos Business Intelligence 10.2.2
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.1
5.4
CVSSv3
CVE-2016-0221
Cross-site scripting (XSS) vulnerability in IBM Cognos TM1, as used in IBM Cognos Business Intelligence 10.2 before IF20, 10.2.1 before IF17, 10.2.1.1 before IF16, 10.2.2 before IF12, and 10.1.1 before IF19, allows remote authenticated users to inject arbitrary web script or HTML...
Ibm Cognos Business Intelligence 10.2.1.1
Ibm Cognos Business Intelligence 10.2.1
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2.2
5.4
CVSSv3
CVE-2016-0346
Cross-site scripting (XSS) vulnerability in IBM Cognos Business Intelligence 10.2 before IF20, 10.2.1 before IF17, 10.2.1.1 before IF16, 10.2.2 before IF12, and 10.1.1 before IF19 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2.2
Ibm Cognos Business Intelligence 10.2.1.1
Ibm Cognos Business Intelligence 10.2.1
2.5
CVSSv3
CVE-2015-7435
IBM Tivoli Common Reporting (TCR) 2.1 before IF14, 2.1.1 before IF22, 2.1.1.2 before IF9, 3.1.0.0 up to and including 3.1.2 as used in Cognos Business Intelligence prior to 10.2 IF16, and 3.1.2.1 as used in Cognos Business Intelligence prior to 10.2.1.1 IF12 allows local users to...
Ibm Tivoli Common Reporting 3.1.0.2
Ibm Tivoli Common Reporting 3.1.0.1
Ibm Tivoli Common Reporting 3.1
Ibm Tivoli Common Reporting 2.1.1.2
Ibm Tivoli Common Reporting 3.1.2
Ibm Tivoli Common Reporting 2.1.1
Ibm Tivoli Common Reporting 3.1.2.1
Ibm Tivoli Common Reporting 2.1
2.5
CVSSv3
CVE-2015-7436
IBM Tivoli Common Reporting (TCR) 2.1 before IF14, 2.1.1 before IF22, 2.1.1.2 before IF9, 3.1.0.0 up to and including 3.1.2 as used in Cognos Business Intelligence prior to 10.2 IF16, and 3.1.2.1 as used in Cognos Business Intelligence prior to 10.2.1.1 IF12 preserves user permis...
Ibm Tivoli Common Reporting 3.1.0.2
Ibm Tivoli Common Reporting 3.1.0.1
Ibm Tivoli Common Reporting 3.1
Ibm Tivoli Common Reporting 2.1.1.2
Ibm Tivoli Common Reporting 3.1.2
Ibm Tivoli Common Reporting 2.1.1
Ibm Tivoli Common Reporting 3.1.2.1
Ibm Tivoli Common Reporting 2.1
NA
CVE-2015-1969
Cross-site scripting (XSS) vulnerability in IBM Tivoli Common Reporting (TCR) 2.1 before IF13 and 2.1.1 before IF21, and TCR 3.1.x as used in Cognos Business Intelligence prior to 10.2 IF0015 and other products, allows remote authenticated users to inject arbitrary web script or ...
Ibm Tivoli Common Reporting 2.1.1.0
Ibm Tivoli Common Reporting 3.1.0.0
Ibm Tivoli Common Reporting 3.1.2
Ibm Tivoli Common Reporting 2.1.0.0
Ibm Tivoli Common Reporting 3.1.0.1
Ibm Tivoli Common Reporting 3.1.0.2
NA
CVE-2014-6145
Cross-site scripting (XSS) vulnerability in the server in IBM Cognos Business Intelligence 10.1 before IF10, 10.1.1 before IF9, 10.2 before IF11, 10.2.1 before IF8, and 10.2.1.1 before IF7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Cognos Business Intelligence 10.1
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.1
Ibm Cognos Business Intelligence 10.2.1.1
NA
CVE-2014-4810
IBM Cognos Mobile 10.1.1 before FP3 IF1, 10.2.0 before FP2 IF1, and 10.2.1 before FP4 IF1 preserves a session between the Cognos Mobile server and the Cognos Business Intelligence server after a logoff action on a mobile device, which makes it easier for remote malicious users to...
Ibm Cognos Mobile 10.2.1
Ibm Cognos Mobile 10.2.0
Ibm Cognos Mobile 10.1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »