5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
There is a vulnerability in IBM Runtime Environment Java Technology Edition, Version 6 that affects IBM Cognos Business Viewpoint. These issues were disclosed as part of the IBM Java SDK updates in October 2015.
CVEID: CVE-2015-4872**
DESCRIPTION:** An unspecified vulnerability in Oracle Java SE and JRockit related to the Security component has no confidentiality impact, partial integrity impact, and no availability impact.
CVSS Base Score: 5
CVSS Temporal Score: See https://exchange.xforce.ibmcloud.com/vulnerabilities/107361 for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:P/A:N)
IBM Cognos Business Viewpoint 10.1 FP1
IBM Cognos Business Viewpoint 10.1.1 FP2
The recommended solution is to apply the fix in one of the 10.1.x versions listed as soon as practical.
Cognos Business Viewpoint 10.1 and Cognos Business Viewpoint 10.1.1 downloads
IBM Cognos Business Viewpoint 10.1.0 FP1 IF7 Windows
<http://www.ibm.com/support/docview.wss?uid=swg24041685>
IBM Cognos Business Viewpoint 10.1.1 FP2 IF6 Windows
<http://www.ibm.com/support/docview.wss?uid=swg24041685>
None
CPE | Name | Operator | Version |
---|---|---|---|
cognos 8 business viewpoint | eq | 10.1.1 | |
cognos 8 business viewpoint | eq | 10.1 |