7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
IBM Planning Analytics and Cognos TM1 Security Bulletins and Alerts.
Published / Updated |Title
July 2018 | Security Bulletin: Multiple vulnerabilities exist in IBM Planning Analytics Local
February 2018 | Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Planning Analytics
October 2017 | Inconsistent results when using Refresh Workbook vs. Refresh Page
October 2017 | Security Bulletin: Multiple Security Vulnerabilities exist in IBM Planning Analytics Express and IBM Cognos Express
September 2017 | Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Planning Analytics Local
Published / Updated|Title
July 2018| Multiple Security Vulnerabilities exist in IBM Cognos TM1 | April 2018| A vulnerability in IBM Java Runtime affects IBM Cognos TM1 | October 2017| Database structure change affects Cognos TM1 and Planning Analytics
September 2017| Cognos TM1 及び Planning Analyticsに於けるデータベース構造の変更
November 2016| URGENT Message to all on premises Cognos TM1 and Cognos Express Customers: You must refresh your SSL Certificate or your TM1 System will Stop Working on November 25, 2016
May 2015| Updated: Cognos TM1 10.2.2 FP3 Interim Fix 1
February 2014| Cognos TM1 10.2 - TM1 Web input issues with non-US numeric values and copy/paste from external sources
February 2014| Cognos TM1 10.2 Multi-threaded Query calculation fix
Published / Updated|Title
July 2018| Multiple Security Vulnerabilities exist in IBM Cognos Insight | April 2018| A vulnerability in IBM Java Runtime affects IBM Cognos Insight | January 2018| Multiple vulnerabilities in IBM Java Runtime affect IBM Cognos Insight | April 2017| Multiple Security Vulnerabilities exist in IBM Cognos Insight | February 2017| Multiple Security Vulnerabilities affect IBM Cognos Insight | July 2016| Multiple Security Vulnerabilities exist in IBM Cognos Insight | May 2016| Multiple Security Vulnerabilities exist in IBM Cognos Insight | May 2015| Vulnerability in RC4 stream cipher affects IBM Cognos Insight (CVE-2015-2808) | May 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Insight (CVE-2015-0410, CVE-2014-3566, CVE-2014-6593) | May 2015| Vulnerabilities in OpenSSL affect Cognos Insight (CVE-2015-0204) | March 2015| Multiple vulnerabilities in OpenSSL affect IBM Cognos Insight (CVE-2014-3567, CVE-2014-3513, CVE-2014-3568) | September 2014| Cognos Insight is affected by the following OpenSSL vulnerabilities: CVE-2014-0224
Security bulletins and Alerts for IBM Concert on Cloud 4.0.2. |
---|
Published / Updated |
July 2014 |
-->
[{“Product”:{“code”:“SSD29G”,“label”:“IBM Planning Analytics”},“Business Unit”:{“code”:“BU059”,“label”:“IBM Software w/o TPS”},“Component”:“–”,“Platform”:[{“code”:“PF025”,“label”:“Platform Independent”}],“Version”:“2.0.4;2.0.3;2.0.2;2.0.1;2.0”,“Edition”:“”,“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}},{“Product”:{“code”:“SS9RXT”,“label”:“Cognos TM1”},“Business Unit”:{“code”:“BU053”,“label”:“Cloud & Data Platform”},“Component”:" “,“Platform”:[{“code”:”“,“label”:”“}],“Version”:“10.2;10.2.2”,“Edition”:”“,“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}},{“Product”:{“code”:“SSDLC4”,“label”:“IBM Planning Analytics Advanced”},“Business Unit”:{“code”:“BU059”,“label”:“IBM Software w/o TPS”},“Component”:” “,“Platform”:[{“code”:”“,“label”:”“}],“Version”:“2.0.4;2.0.3;2.0.2;2.0.1;2.0”,“Edition”:”“,“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}},{“Product”:{“code”:“SSDL22”,“label”:“IBM Planning Analytics Express”},“Business Unit”:{“code”:“BU059”,“label”:“IBM Software w/o TPS”},“Component”:” “,“Platform”:[{“code”:”“,“label”:”“}],“Version”:“2.0.4;2.0.3;2.0.2;2.0.1;2.0”,“Edition”:”“,“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}},{“Product”:{“code”:“SSCTEW”,“label”:“IBM Planning Analytics Local”},“Business Unit”:{“code”:“BU053”,“label”:“Cloud & Data Platform”},“Component”:” “,“Platform”:[{“code”:”“,“label”:”“}],“Version”:“2.0.4;2.0.3;2.0.2;2.0.1;2.0”,“Edition”:”“,“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}},{“Product”:{“code”:“SS8K23”,“label”:“IBM Concert on Cloud”},“Business Unit”:{“code”:“BU059”,“label”:“IBM Software w/o TPS”},“Component”:” “,“Platform”:[{“code”:”“,“label”:”“}],“Version”:“4.0.2”,“Edition”:”“,“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}},{“Product”:{“code”:“SSVJ22”,“label”:“Cognos Insight”},“Business Unit”:{“code”:“BU053”,“label”:“Cloud & Data Platform”},“Component”:” “,“Platform”:[{“code”:”“,“label”:”“}],“Version”:“10.2.2;10.2.1;10.2”,“Edition”:”",“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}}]
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C