IBM Cognos Analytics is a suite of business intelligence software from International Business Machines (IBM). The software includes reports, dashboards, and scorecards, and can assist companies in adjusting their decisions by analyzing such things as key factors and key people. IBM Cognos Analytics suffers from a cross-site scripting vulnerability that stems from improper validation of SVG files in custom visualizations. An attacker could use the vulnerability to execute scripts in the victim’s browser and steal their authentication credentials.
CPE | Name | Operator | Version |
---|---|---|---|
ibm ibm cognos analytics >=11.1.0, | lt | 11.1.7 |