Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cognos business intelligence vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2010-1490
Unspecified vulnerability in IBM Cognos 8 Business Intelligence prior to 8.4.1 FP1 has unknown impact and attack vectors.
Ibm Cognos 8 Business Intelligence
9.3
CVSSv2
CVE-2012-4858
IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 does not properly validate Java serialized input, which allows remote malicious users to execute arbitrary commands via unspecified vectors.
Ibm Cognos Business Intelligence 8.4.1
Ibm Cognos Business Intelligence 10.1
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2
6.8
CVSSv2
CVE-2018-1934
IBM Cognos Business Intelligence 10.2.2 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 153179.
Ibm Cognos Business Intelligence 10.2.2
6.8
CVSSv2
CVE-2016-0254
IBM Cognos Business Intelligence 10.1 and 10.2 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote authenticated attacker could exploit this vulnerability to consume all available CPU resources and cause ...
Ibm Cognos Business Intelligence 10.2.1
Ibm Cognos Business Intelligence 10.2.2
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.1.1
6.5
CVSSv2
CVE-2016-8960
IBM Cognos Business Intelligence 10.2 could allow a user with lower privilege Capabilities to adopt the Capabilities of a higher-privilege user by intercepting the higher-privilege user's cookie value from its HTTP request and then reusing it in subsequent requests. IBM Refe...
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.1.1
Ibm Cognos Business Intelligence 10.2.2
Ibm Cognos Business Intelligence 10.2.1
5
CVSSv2
CVE-2016-9710
IBM Predictive Solutions Foundation (formerly PMQ) could allow a remote malicious user to include arbitrary files. A remote attacker could send a specially-crafted URL to specify a file from the local system, which could allow the malicious user to obtain sensitive information. I...
Ibm Cognos Business Intelligence Server 10.2.1
Ibm Cognos Business Intelligence Server 10.2.1.1
Ibm Cognos Business Intelligence Server 10.2.2
Ibm Cognos Business Intelligence Server 10.1.1
Ibm Cognos Business Intelligence Server 10.2.0
5
CVSSv2
CVE-2016-3036
IBM Cognos TM1 10.1 and 10.2 is vulnerable to a denial of service, caused by a stack-based buffer overflow when parsing packets. A remote attacker could exploit this vulnerability to cause a denial of service. IBM X-Force ID: 114612.
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.2
Ibm Cognos Business Intelligence 10.1
5
CVSSv2
CVE-2014-0854
The server in IBM Cognos Business Intelligence (BI) 8.4.1, 10.1 before IF6, 10.1.1 before IF5, 10.2 before IF7, 10.2.1 before IF4, and 10.2.1.1 before IF4 allows remote authenticated users to read arbitrary files via an XML document containing an external entity declaration in co...
Ibm Cognos Business Intelligence 8.4.1
Ibm Cognos Business Intelligence 10.2.1.1
Ibm Cognos Business Intelligence 10.2.1
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.1
5
CVSSv2
CVE-2013-3030
The servlet gateway in IBM Cognos Business Intelligence 8.4.1 before IF3, 10.1.0 before IF4, 10.1.1 before IF4, 10.2.0 before IF4, 10.2.1 before IF2, and 10.2.1.1 before IF1 allows remote malicious users to cause a denial of service (temporary gateway outage) via crafted HTTP req...
Ibm Cognos Business Intelligence 10.2.1.1
Ibm Cognos Business Intelligence 8.4.1
Ibm Cognos Business Intelligence 10.2
Ibm Cognos Business Intelligence 10.2.1
Ibm Cognos Business Intelligence 10.1
Ibm Cognos Business Intelligence 10.1.1
5
CVSSv2
CVE-2012-4840
IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 allows remote malicious users to conduct XPath injection attacks, and call XPath extension functions, via unspecified vectors.
Ibm Cognos Business Intelligence 8.4.1
Ibm Cognos Business Intelligence 10.1
Ibm Cognos Business Intelligence 10.1.1
Ibm Cognos Business Intelligence 10.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »