The Planning Analytics Spreadsheet Services component of IBM Planning Analytics is affected by a vulnerability. This has been addressed in IBM Planning Analytics Local v2.0 - Planning Analytics Spreadsheet Services Release 64.
CVEID:CVE-2020-4985
**DESCRIPTION:**IBM Planning Analytics Local could allow an attacker to obtain sensitive information due to accepting body parameters in a query.
CVSS Base score: 3.7
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/192642 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N)
IBM Planning Analytics Local 2.0
The recommended solution is to apply the fix as soon as practical.
[Download IBM Planning Analytics Local v2.0 - Planning Analytics Spreadsheet Services Release 64 from Fix Central](<https://www.ibm.com/support/pages/node/6448848> "Download IBM Planning Analytics Local v2.0 - Planning Analytics Spreadsheet Services Release 64 from Fix Central" )
This Security Bulletin is applicable to IBM Planning Analytics 2.0 (Local).
The vulnerability has been addressed on IBM Planning Analytics Cloud and no further action is required.
None
CPE | Name | Operator | Version |
---|---|---|---|
ibm planning analytics local | eq | 2.0 |