IBM Cognos Analytics 11.0 and 11.1 DQM API allows submitting of all control requests in unauthenticated sessions. This allows a remote attacker who can access a valid CA endpoint to read and write files to the Cognos Analytics system. IBM X-Force ID: 183903.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm cognos analytics 11.0.0 |
||
ibm cognos analytics 11.1.0 |
||
netapp oncommand insight - |