Lucene search

K
ibmIBM19FAFF710B3E3738F8567DADBCF7C6BE9748A2C12CD349CA0B858BA9A26AB606
HistoryJul 18, 2018 - 5:37 p.m.

Security Bulletins - IBM Planning Analytics, Cognos TM1 and Cognos Insight

2018-07-1817:37:11
www.ibm.com
27

7.4 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

Problem

IBM Planning Analytics and Cognos TM1 Security Bulletins and Alerts.

Resolving The Problem

Tab navigation

  • PA 2.0.x
  • TM1 10.2.x
  • Insight 10.2.x
  • Concert 4.0.2

Security bulletins and Alerts for IBM Planning Analytics 2.0.x.

Published / Updated |Title
July 2018 | Security Bulletin: Multiple vulnerabilities exist in IBM Planning Analytics Local
February 2018 | Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Planning Analytics
October 2017 | Inconsistent results when using Refresh Workbook vs. Refresh Page
October 2017 | Security Bulletin: Multiple Security Vulnerabilities exist in IBM Planning Analytics Express and IBM Cognos Express
September 2017 | Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Planning Analytics Local

Security bulletins and Alerts for Cognos TM1 10.2 and 10.2.2.

Published / Updated|Title
July 2018| Multiple Security Vulnerabilities exist in IBM Cognos TM1 | April 2018| A vulnerability in IBM Java Runtime affects IBM Cognos TM1 | October 2017| Database structure change affects Cognos TM1 and Planning Analytics
September 2017| Cognos TM1 及び Planning Analyticsに於けるデータベース構造の変更
November 2016| URGENT Message to all on premises Cognos TM1 and Cognos Express Customers: You must refresh your SSL Certificate or your TM1 System will Stop Working on November 25, 2016
May 2015| Updated: Cognos TM1 10.2.2 FP3 Interim Fix 1
February 2014| Cognos TM1 10.2 - TM1 Web input issues with non-US numeric values and copy/paste from external sources
February 2014| Cognos TM1 10.2 Multi-threaded Query calculation fix

Security bulletins for Cognos Insight 10.2, 10.2.1 and 10.2.2.

Published / Updated|Title
July 2018| Multiple Security Vulnerabilities exist in IBM Cognos Insight | April 2018| A vulnerability in IBM Java Runtime affects IBM Cognos Insight | January 2018| Multiple vulnerabilities in IBM Java Runtime affect IBM Cognos Insight | April 2017| Multiple Security Vulnerabilities exist in IBM Cognos Insight | February 2017| Multiple Security Vulnerabilities affect IBM Cognos Insight | July 2016| Multiple Security Vulnerabilities exist in IBM Cognos Insight | May 2016| Multiple Security Vulnerabilities exist in IBM Cognos Insight | May 2015| Vulnerability in RC4 stream cipher affects IBM Cognos Insight (CVE-2015-2808) | May 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Insight (CVE-2015-0410, CVE-2014-3566, CVE-2014-6593) | May 2015| Vulnerabilities in OpenSSL affect Cognos Insight (CVE-2015-0204) | March 2015| Multiple vulnerabilities in OpenSSL affect IBM Cognos Insight (CVE-2014-3567, CVE-2014-3513, CVE-2014-3568) | September 2014| Cognos Insight is affected by the following OpenSSL vulnerabilities: CVE-2014-0224

Security bulletins and Alerts for IBM Concert on Cloud 4.0.2.
Published / Updated
July 2014

-->

[{“Product”:{“code”:“SSD29G”,“label”:“IBM Planning Analytics”},“Business Unit”:{“code”:“BU059”,“label”:“IBM Software w/o TPS”},“Component”:“–”,“Platform”:[{“code”:“PF025”,“label”:“Platform Independent”}],“Version”:“2.0.4;2.0.3;2.0.2;2.0.1;2.0”,“Edition”:“”,“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}},{“Product”:{“code”:“SS9RXT”,“label”:“Cognos TM1”},“Business Unit”:{“code”:“BU053”,“label”:“Cloud & Data Platform”},“Component”:" “,“Platform”:[{“code”:”“,“label”:”“}],“Version”:“10.2;10.2.2”,“Edition”:”“,“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}},{“Product”:{“code”:“SSDLC4”,“label”:“IBM Planning Analytics Advanced”},“Business Unit”:{“code”:“BU059”,“label”:“IBM Software w/o TPS”},“Component”:” “,“Platform”:[{“code”:”“,“label”:”“}],“Version”:“2.0.4;2.0.3;2.0.2;2.0.1;2.0”,“Edition”:”“,“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}},{“Product”:{“code”:“SSDL22”,“label”:“IBM Planning Analytics Express”},“Business Unit”:{“code”:“BU059”,“label”:“IBM Software w/o TPS”},“Component”:” “,“Platform”:[{“code”:”“,“label”:”“}],“Version”:“2.0.4;2.0.3;2.0.2;2.0.1;2.0”,“Edition”:”“,“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}},{“Product”:{“code”:“SSCTEW”,“label”:“IBM Planning Analytics Local”},“Business Unit”:{“code”:“BU053”,“label”:“Cloud & Data Platform”},“Component”:” “,“Platform”:[{“code”:”“,“label”:”“}],“Version”:“2.0.4;2.0.3;2.0.2;2.0.1;2.0”,“Edition”:”“,“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}},{“Product”:{“code”:“SS8K23”,“label”:“IBM Concert on Cloud”},“Business Unit”:{“code”:“BU059”,“label”:“IBM Software w/o TPS”},“Component”:” “,“Platform”:[{“code”:”“,“label”:”“}],“Version”:“4.0.2”,“Edition”:”“,“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}},{“Product”:{“code”:“SSVJ22”,“label”:“Cognos Insight”},“Business Unit”:{“code”:“BU053”,“label”:“Cloud & Data Platform”},“Component”:” “,“Platform”:[{“code”:”“,“label”:”“}],“Version”:“10.2.2;10.2.1;10.2”,“Edition”:”",“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}}]

7.4 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

Related for 19FAFF710B3E3738F8567DADBCF7C6BE9748A2C12CD349CA0B858BA9A26AB606