Lucene search
China National Vulnerability DatabaseCNVD-2022-11190HistoryFeb 16, 2022 - 12:00 a.m.
IBM Cognos Analytics Cross-Site Scripting Vulnerability (CNVD-2022-11190)
2022-02-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.001 Low
EPSS
Percentile
19.6%
IBM Cognos Analytics is a suite of business intelligence software from IBM Corporation. IBM Cognos Analytics Mobile for Android is vulnerable to cross-site scripting, which originates from IBM Cognos Analytics Mobile before version 1.1.14. Android applications are vulnerable to cross-site scripting attacks. An attacker could exploit the vulnerability to embed arbitrary JavaScript code in the Web UI to alter the intended functionality, which could lead to credential disclosure in a trusted session.
Related
nvd
nvd
CVE-2021-39079
2022-02-14 18:15:07
prion
prion
Cross site scripting
2022-02-14 18:15:00
cve
cve
CVE-2021-39079
2022-02-14 18:15:07
cvelist
cvelist
CVE-2021-39079
2022-02-11 00:00:00
ibm
ibm