Security Bulletins - Cognos Analytics and Cognos Business Intelligence

Problem

Cognos Analytics and Cognos Business Intelligence Security Bulletins and Alerts.

Resolving The Problem

Tab navigation

• CA 11.0.x
• BI 10.2.2
• BI 10.2.1
• BI 10.2

Security bulletins and Alerts for Cognos Analytics 11.0.x.

Published / Updated |Title
January 2018 | Cognos Analytics is affected by multiple vulnerabilities
January 2018 | Cognos AnalyticsのLibxml2脆弱性について
January 2018 | Cognos Analytics is affected by multiple vulnerabilities
September 2017 | Cognos Analytics is affected by multiple vulnerabilities
August 2017 | Cognos Analytics はクロスサイトスクリプティング(XSS)の脆弱性の影響を受けます
July 2017 | Cognos Analytics is not affected by the Apache Xalan-Java vulnerability (CVE-2014-0107)
June 2017 | Cognos Analytics is affected by a Cross-Site Scripting (XSS) vulnerability
May 2017 | Cognos Analytics is NOT AFFECTED by the OpenSource Bouncy Castle Vulnerability (CVE-2015-7940)
May 2017 | Cognos Analytics is affected by CVE-2016-0398
May 2017 | Cognos Analytics is affected by multiple vulnerabilities
April 2017 | Cross Site Scripting (XSS) vulnerability affects Cognos Analytics
March 2017 | Cognos Analytics is affected by multiple vulnerabilities
March 2017 | Privilege Escalation vulnerability affects Cognos Analytics (CVE-2016-8960)
January 2017 | A vulnerability in the GSKit component of Cognos Analytics (CVE-2016-0201)
January 2017 | Cognos Analytics is affected by multiple vulnerabilities

Security bulletins and Alerts for Cognos Busines Intelligence 10.2.2.

Published / Updated|Title
July 2018| IBM Cognos Business Intelligence Server is affected by multiple vulnerabilities
April 2018| Cognos Metrics Manager 2018 Q1 Security Update
December 2017| Multiple vulnerabilities in Libxml2 affect Cognos Metrics Manager
December 2017| Cognos Business Intelligence Server 2017Q4 Security Updater
October 2017| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager
October 2017| A vulnerability in the Apache Xerces-C XML Parser affects Cognos Metrics Manager
October 2017| Cognos Business Intelligence Server 2017Q3 Security Updater
October 2017| A vulnerability in the libpng library affects Cognos Metrics Manager
October 2017| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager
June 2017| Cognos Business Intelligence Server 2017Q2 Security Updater
May 2017| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager
May 2017| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager
May 2017| A vulnerability in the GSKit library affects Cognos Metrics Manager
May 2017| Multiple vulnerabilities in OpenSSL affect Cognos Metrics Manager
May 2017| Cognos Business Intelligence is NOT AFFECTED by the OpenSource Bouncy Castle Vulnerability (CVE-2015-7940)
April 2017| Vulnerability in IBM WebSphere Application Server affects Cognos Metrics Manager (CVE-2015-2017)
April 2017| Multiple vulnerabilities in Apache HttpComponents affect Cognos Metrics Manager (CVE-2012-6153, CVE-2014-3577)
March 2017| Multiple vulnerabilities in Apache Tomcat affect Cognos Metrics Manager (CVE-2016-0762, CVE-2016-6816)
March 2017| A vulnerability in IBM Websphere Application Server affects Cognos Metrics Manager (CVE-2016-5983)
March 2017| Cognos Business Intelligence Server 2017Q1 Security Updater
March 2017| Privilege Escalation vulnerability affects Cognos Business Intelligence (CVE-2016-8960)
January 2017| Cognos Business Intelligence is affected by a vulnerability
January 2017| Cognos Business Intelligence Server 2016Q4 Security Updater
January 2017| A vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2016-3485)
January 2017| Multiple vulnerabilities in libxml2 affect Cognos Metrics Manager (CVE-2016-3705, CVE-2016-4447, CVE-2016-4448)
January 2017| Vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2016-6302 CVE-2016-6304 CVE-2016-6303 CVE-2016-2177 CVE-2016-2178 CVE-2016-2179 CVE-2016-6306 CVE-2016-2181 CVE-2016-2183)
January 2017| Cognos Business Intelligence Server 2016Q2 Security Updater
October 2016| Cognos Business Intelligence Server 2016Q1 Security Updater
July 2016| A vulnerability in the Apache Xerces-C XML parser affects Cognos Metrics Manager (CVE-2016-0729)
July 2016| A vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2016-3427)
July 2016| A vulnerability in Apache Tomcat affects Cognos Metrics Manager (CVE-2015-5345)
July 2016| A vulnerability in OpenSSL affects Cognos Metrics Manager (CVE-2016-2106, CVE-2016-2107, CVE-2016-2108)
May 2016| Cognos Business Intelligence Server is affected by CVE-2016-0398
May 2016| Multiple vulnerabilities in libxml2 affect Cognos Metrics Manager (CVE-2015-1819, CVE-2015-5312, CVE-2015-7497, CVE-2015-7498, CVE-2015-7499, CVE-2015-7500, CVE-2015-7941, CVE-2015-7942, CVE-2015-8035, CVE-2015-8241, CVE-2015-8317)
May 2016| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2016-0448, CVE-2016-0466)
March 2016| Multiple vulnerabilities in libpng affect Cognos Metrics Manager (CVE-2015-8126, CVE-2015-8472, CVE-2015-8540)
February 2016| Several vulnerabilities in the libpng component of Cognos Business Intelligence Server (CVE-2015-8126, CVE-2015-8472, CVE-2015-8540)
January 2016| A vulnerability in the GSKit component of Cognos Business Intelligence Server (CVE-2016-0201)
January 2016| A vulnerability in the GSKit component of Cognos Metrics Manager (CVE-2016-0201)
November 2015| A vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2015-4872)
November 2015| Vulnerability in Apache Commons affects Cognos Metrics Manager (CVE-2015-7450)
November 2015| Cognos Business Intelligence Server 2015Q4 Security Updater
August 2015| Cognos Business Intelligence Sever 2015Q3 Security Updater
August 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2015-2625, CVE-2015-4748, CVE-2015-4749)
August 2015| Vulnerability in Tomcat affects Cognos Metrics Manager (CVE-2014-0230)
August 2015| Vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2015-1789, CVE-2015-1790, CVE-2015-1792)
August 2015| Vulnerability in RC4 stream cipher affects Cognos Business Intelligence Server (CVE-2015-2808)
July 2015| Vulnerability in Diffie-Hellman ciphers affects Cognos Mobile app on Android (CVE-2015-4000)
July 2015| Cognos Business Intelligence Sever 2015Q2 Security Updater
July 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2015-0478, CVE-2015-0488, CVE-2015-2808)
July 2015| Vulnerability in Tomcat affects Cognos Metrics Manager (CVE-2014-0227)
July 2015| Vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2015-0286, CVE-2015-0287, CVE-2015-0288, CVE-2015-0289, CVE-2015-0293)
June 2015| Vulnerability in Diffie-Hellman ciphers affects Cognos Metrics Manager (CVE-2015-4000)
June 2015| Vulnerability in Diffie-Hellman ciphers affects Cognos Business Intelligence (CVE-2015-4000)
May 2015| A vulnerability in the IBM Dojo Toolkit affects Cognos Business Intelligence (CVE-2014-8917)
May 2015| A vulnerability in the IBM Dojo Toolkit affects Cognos Metrics Manager (CVE-2014-8917)
April 2015| Vulnerability in RC4 stream cipher affects Cognos Mobile app on Android (CVE-2015-2808)
April 2015| Vulnerability in RC4 stream cipher affects Cognos Metrics Manager (CVE-2015-2808)
April 2015| Vulnerability exists in GSKit that affects Cognos Metrics Manager (CVE-2015-0159)
April 2015| Vulnerability in IBM WebSphere Application Server affects Cognos Metrics Manager (CVE-2015-0138)
April 2015| Vulnerabilities in IBM WebSphere Application Server and GSKit affects Cognos Business Intelligence (CVE-2015-0138, CVE-2015-0159)
April 2015| Vulnerability in IBM Runtime Environment Java Technology Edition affects Cognos Business Intelligence Server (CVE-2015-0138)
April 2015| Vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2015-0138)
March 2015| Cognos Business Intelligence Server is affected by multiple vulnerabilities
March 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2015-0410, CVE-2014-6593)
March 2015| Multiple vulnerabilities in the Libpng library affect Cognos Metrics Manager (CVE-2015-0973, CVE-2014-9495)
March 2015| Multiple vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2014-3569, CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2015-0204)
March 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2014-3566, CVE-2014-6457)
February 2015| A vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2014-4263)
January 2015| TLS padding vulnerability affects Cognos Business Intelligence (CVE-2014-8730)
January 2015| TLS padding vulnerability affects Cognos Metrics Manager (CVE-2014-8730)
December 2014| Cognos Business Intelligence Server is affected by multiple vulnerabilities (CVE-2014-3566, CVE-2014-6145, CVE-2014-1568, CVE-2014-4263, CVE-2012-5784, CVE-2014-3513, CVE-2014-3567 and CVE-2014-3568)
December 2014| A vulnerability in the Mozilla Network Security Services (NSS) affects Cognos Metrics Manager (CVE-2014-1568)
December 2014| A vulnerability in Apache Axis affects Cognos Metrics Manager (CVE-2012-5784)
December 2014| Multiple vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2014-3567, CVE-2014-3513, CVE-2014-3568)

Security bulletins and Alerts for Cognos Busines Intelligence 10.2.1.

Published / Updated|Title
April 2018| Cognos Metrics Manager 2018 Q1 Security Update
December 2017| Multiple vulnerabilities in Libxml2 affect Cognos Metrics Manager
December 2017| Cognos Business Intelligence Server 2017Q4 Security Updater
October 2017| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager
October 2017| A vulnerability in the Apache Xerces-C XML Parser affects Cognos Metrics Manager
October 2017| Cognos Business Intelligence Server 2017Q3 Security Updater
October 2017| A vulnerability in the libpng library affects Cognos Metrics Manager
October 2017| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager
June 2017| Cognos Business Intelligence Server 2017Q2 Security Updater
May 2017| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager
May 2017| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager
May 2017| Multiple vulnerabilities in OpenSSL affect Cognos Metrics Manager
May 2017| Cognos Business Intelligence is NOT AFFECTED by the OpenSource Bouncy Castle Vulnerability (CVE-2015-7940)
April 2017| Multiple vulnerabilities in Apache HttpComponents affect Cognos Metrics Manager (CVE-2012-6153, CVE-2014-3577)
March 2017| Multiple vulnerabilities in Apache Tomcat affect Cognos Metrics Manager (CVE-2016-0762, CVE-2016-6816)
March 2017| Cognos Business Intelligence Server 2017Q1 Security Updater
March 2017| Privilege Escalation vulnerability affects Cognos Business Intelligence (CVE-2016-8960)
January 2017| Cognos Business Intelligence is affected by a vulnerability
January 2017| Cognos Business Intelligence Server 2016Q4 Security Updater
January 2017| A vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2016-3485)
January 2017| Multiple vulnerabilities in libxml2 affect Cognos Metrics Manager (CVE-2016-3705, CVE-2016-4447, CVE-2016-4448)
January 2017| Vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2016-6302 CVE-2016-6304 CVE-2016-6303 CVE-2016-2177 CVE-2016-2178 CVE-2016-2179 CVE-2016-6306 CVE-2016-2181 CVE-2016-2183)
January 2017| Cognos Business Intelligence Server 2016Q2 Security Updater
October 2016| Cognos Business Intelligence Server 2016Q1 Security Updater
July 2016| A vulnerability in the Apache Xerces-C XML parser affects Cognos Metrics Manager (CVE-2016-0729)
July 2016| A vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2016-3427)
July 2016| A vulnerability in Apache Tomcat affects Cognos Metrics Manager (CVE-2015-5345)
July 2016| A vulnerability in OpenSSL affects Cognos Metrics Manager (CVE-2016-2106, CVE-2016-2107, CVE-2016-2108)
May 2016| Cognos Business Intelligence Server is affected by CVE-2016-0398
May 2016| Multiple vulnerabilities in libxml2 affect Cognos Metrics Manager (CVE-2015-1819, CVE-2015-5312, CVE-2015-7497, CVE-2015-7498, CVE-2015-7499, CVE-2015-7500, CVE-2015-7941, CVE-2015-7942, CVE-2015-8035, CVE-2015-8241, CVE-2015-8317)
May 2016| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2016-0448, CVE-2016-0466)
March 2016| Multiple vulnerabilities in libpng affect Cognos Metrics Manager (CVE-2015-8126, CVE-2015-8472, CVE-2015-8540)
February 2016| Several vulnerabilities in the libpng component of Cognos Business Intelligence Server (CVE-2015-8126, CVE-2015-8472, CVE-2015-8540)
November 2015| A vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2015-4872)
November 2015| Vulnerability in Apache Commons affects Cognos Metrics Manager (CVE-2015-7450)
November 2015| Cognos Business Intelligence Server 2015Q4 Security Updater
August 2015| Cognos Business Intelligence Sever 2015Q3 Security Updater
August 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2015-2625, CVE-2015-4748, CVE-2015-4749)
August 2015| Vulnerability in Tomcat affects Cognos Metrics Manager (CVE-2014-0230)
August 2015| Vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2015-1789, CVE-2015-1790, CVE-2015-1792)
August 2015| Vulnerability in RC4 stream cipher affects Cognos Business Intelligence Server (CVE-2015-2808)
July 2015| Vulnerability in Diffie-Hellman ciphers affects Cognos Mobile app on Android (CVE-2015-4000)
July 2015| Cognos Business Intelligence Sever 2015Q2 Security Updater
July 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2015-0478, CVE-2015-0488, CVE-2015-2808)
July 2015| Vulnerability in Tomcat affects Cognos Metrics Manager (CVE-2014-0227)
July 2015| Vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2015-0286, CVE-2015-0287, CVE-2015-0288, CVE-2015-0289, CVE-2015-0293)
June 2015| Vulnerability in Diffie-Hellman ciphers affects Cognos Metrics Manager (CVE-2015-4000)
June 2015| Vulnerability in Diffie-Hellman ciphers affects Cognos Business Intelligence (CVE-2015-4000)
May 2015| A vulnerability in the IBM Dojo Toolkit affects Cognos Business Intelligence (CVE-2014-8917)
May 2015| A vulnerability in the IBM Dojo Toolkit affects Cognos Metrics Manager (CVE-2014-8917)
April 2015| Vulnerability in RC4 stream cipher affects Cognos Mobile app on Android (CVE-2015-2808)
April 2015| Vulnerability in RC4 stream cipher affects Cognos Metrics Manager (CVE-2015-2808)
April 2015| Vulnerabilities in IBM WebSphere Application Server and GSKit affects Cognos Business Intelligence (CVE-2015-0138, CVE-2015-0159)
April 2015| Vulnerability in IBM Runtime Environment Java Technology Edition affects Cognos Business Intelligence Server (CVE-2015-0138)
April 2015| Vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2015-0138)
March 2015| Cognos Business Intelligence Server is affected by multiple vulnerabilities
March 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2015-0410, CVE-2014-6593)
March 2015| Multiple vulnerabilities in the Libpng library affect Cognos Metrics Manager (CVE-2015-0973, CVE-2014-9495)
March 2015| Multiple vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2014-3569, CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2015-0204)
March 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2014-3566, CVE-2014-6457)
February 2015| A vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2014-4263)
January 2015| TLS padding vulnerability affects Cognos Business Intelligence (CVE-2014-8730)
December 2014| Cognos Business Intelligence Server is affected by multiple vulnerabilities (CVE-2014-3566, CVE-2014-6145, CVE-2014-1568, CVE-2014-4263, CVE-2012-5784, CVE-2014-3513, CVE-2014-3567 and CVE-2014-3568)
December 2014| A vulnerability in the Mozilla Network Security Services (NSS) affects Cognos Metrics Manager (CVE-2014-1568)
December 2014| A vulnerability in Apache Axis affects Cognos Metrics Manager (CVE-2012-5784)
December 2014| Multiple vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2014-3567, CVE-2014-3513, CVE-2014-3568)
November 2014| Cognos BI Server is affected by the following vulnerabilities: CVE-2014-0107, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119, CVE-2014-0878, CVE-2014-0460
September 2014| Cognos Business Intelligence is not affected by the Bash vulnerabilities (CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277, and CVE-2014-6278)
September 2014| Cognos Metrics Manager is affected by the following IBM Java Runtime vulnerabilities: CVE-2014-0878, CVE-2014-0460
September 2014| Cognos Metrics Manager is affected by a vulnerability in Apache Xalan-Java (CVE-2014-0107)
September 2014| Cognos Metrics Manager is affected by the following Tomcat vulnerabilities: CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119
September 2014| OpenSSL Heartbleed Vulnerability
August 2014| Cognos Metrics Manager is affected by the following OpenSSL vulnerabilities: CVE-2014-0224
July 2014| Cognos BI Server is affected by the following OpenSSL vulnerability: CVE-2014-0224
July 2014| Security vulnerabilities have been identified in IBM DB2 shipped with Cognos Business Intelligence (CVE-2013-6747, CVE-2014-0963)
July 2014| A security vulnerability has been identified in IBM WebSphere Application Server shipped with Cognos Business Intelligence (CVE-2014-0114)
May 2014| Multiple security exposures in Cognos BI Server (CVE-2014- 0416, CVE-2014-0423, CVE-2013-4322)
March 2014| Multiple security exposures in Cognos BI Server (CVE-2013-6954, CVE-2013-6732, CVE-2013-5802, CVE-2013-5825, CVE-2014-0854, CVE-2014-0861)
November 2013| Cognos Business Intelligence (CVE-2013-3030, CVE-2013-4002, CVE-2013-2407, CVE-2013-2450, CVE-2013-4034, CVE-2013-5372)

Security bulletins and Alerts for Cognos Busines Intelligence 10.2.

Published / Updated|Title
April 2018| Cognos Metrics Manager 2018 Q1 Security Update
December 2017| Multiple vulnerabilities in Libxml2 affect Cognos Metrics Manager
December 2017| Cognos Business Intelligence Server 2017Q4 Security Updater
October 2017| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager
October 2017| A vulnerability in the Apache Xerces-C XML Parser affects Cognos Metrics Manager.
October 2017| Cognos Business Intelligence Server 2017Q3 Security Updater
October 2017| A vulnerability in the libpng library affects Cognos Metrics Manager
October 2017| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager
June 2017| Cognos Business Intelligence Server 2017Q2 Security Updater
May 2017| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager
May 2017| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager
May 2017| Multiple vulnerabilities in OpenSSL affect Cognos Metrics Manager
May 2017| Cognos Business Intelligence is NOT AFFECTED by the OpenSource Bouncy Castle Vulnerability (CVE-2015-7940)
April 2017| Multiple vulnerabilities in Apache HttpComponents affect Cognos Metrics Manager (CVE-2012-6153, CVE-2014-3577)
March 2017| Multiple vulnerabilities in Apache Tomcat affect Cognos Metrics Manager (CVE-2016-0762, CVE-2016-6816)
March 2017| Cognos Business Intelligence Server 2017Q1 Security Updater
March 2017| Privilege Escalation vulnerability affects Cognos Business Intelligence (CVE-2016-8960)
January 2017| Cognos Business Intelligence is affected by a vulnerability
January 2017| Cognos Business Intelligence Server 2016Q4 Security Updater
January 2017| A vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2016-3485)
January 2017| Multiple vulnerabilities in libxml2 affect Cognos Metrics Manager (CVE-2016-3705, CVE-2016-4447, CVE-2016-4448)
January 2017| Vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2016-6302 CVE-2016-6304 CVE-2016-6303 CVE-2016-2177 CVE-2016-2178 CVE-2016-2179 CVE-2016-6306 CVE-2016-2181 CVE-2016-2183)
January 2017| Cognos Business Intelligence Server 2016Q2 Security Updater
October 2016| Cognos Business Intelligence Server 2016Q1 Security Updater
July 2016| A vulnerability in the Apache Xerces-C XML parser affects Cognos Metrics Manager (CVE-2016-0729)
July 2016| A vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2016-3427)
July 2016| A vulnerability in Apache Tomcat affects Cognos Metrics Manager (CVE-2015-5345)
July 2016| A vulnerability in OpenSSL affects Cognos Metrics Manager (CVE-2016-2106, CVE-2016-2107, CVE-2016-2108)
May 2016| Cognos Business Intelligence Server is affected by CVE-2016-0398
May 2016| Multiple vulnerabilities in libxml2 affect Cognos Metrics Manager (CVE-2015-1819, CVE-2015-5312, CVE-2015-7497, CVE-2015-7498, CVE-2015-7499, CVE-2015-7500, CVE-2015-7941, CVE-2015-7942, CVE-2015-8035, CVE-2015-8241, CVE-2015-8317)
May 2016| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2016-0448, CVE-2016-0466)
March 2016| Multiple vulnerabilities in libpng affect Cognos Metrics Manager (CVE-2015-8126, CVE-2015-8472, CVE-2015-8540)
February 2016| Several vulnerabilities in the libpng component of Cognos Business Intelligence Server (CVE-2015-8126, CVE-2015-8472, CVE-2015-8540)
November 2015| A vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2015-4872)
November 2015| Vulnerability in Apache Commons affects Cognos Metrics Manager (CVE-2015-7450)
November 2015| Cognos Business Intelligence Server 2015Q4 Security Updater
August 2015| Cognos Business Intelligence Sever 2015Q3 Security Updater
August 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2015-2625, CVE-2015-4748, CVE-2015-4749)
August 2015| Vulnerability in Tomcat affects Cognos Metrics Manager (CVE-2014-0230)
August 2015| Vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2015-1789, CVE-2015-1790, CVE-2015-1792)
August 2015| Vulnerability in RC4 stream cipher affects Cognos Business Intelligence Server (CVE-2015-2808)
July 2015| Vulnerability in Diffie-Hellman ciphers affects Cognos Mobile app on Android (CVE-2015-4000)
July 2015| Cognos Business Intelligence Sever 2015Q2 Security Updater
July 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2015-0478, CVE-2015-0488, CVE-2015-2808)
July 2015| Vulnerability in Tomcat affects Cognos Metrics Manager (CVE-2014-0227)
July 2015| Vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2015-0286, CVE-2015-0287, CVE-2015-0288, CVE-2015-0289, CVE-2015-0293)
June 2015| Vulnerability in Diffie-Hellman ciphers affects Cognos Metrics Manager (CVE-2015-4000)
June 2015| Vulnerability in Diffie-Hellman ciphers affects Cognos Business Intelligence (CVE-2015-4000)
May 2015| A vulnerability in the IBM Dojo Toolkit affects Cognos Business Intelligence (CVE-2014-8917)
May 2015| A vulnerability in the IBM Dojo Toolkit affects Cognos Metrics Manager (CVE-2014-8917)
April 2015| Vulnerability in RC4 stream cipher affects Cognos Mobile app on Android (CVE-2015-2808)
April 2015| Vulnerability in RC4 stream cipher affects Cognos Metrics Manager (CVE-2015-2808)
April 2015| Vulnerabilities in IBM WebSphere Application Server and GSKit affects Cognos Business Intelligence (CVE-2015-0138, CVE-2015-0159)
April 2015| Vulnerability in IBM Runtime Environment Java Technology Edition affects Cognos Business Intelligence Server (CVE-2015-0138)
April 2015| Vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2015-0138)
March 2015| Cognos Business Intelligence Server is affected by multiple vulnerabilities
March 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2015-0410, CVE-2014-6593)
March 2015| Multiple vulnerabilities in the Libpng library affect Cognos Metrics Manager (CVE-2015-0973, CVE-2014-9495)
March 2015| Multiple vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2014-3569, CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2015-0204)
March 2015| Multiple vulnerabilities in IBM Java Runtime affect Cognos Metrics Manager (CVE-2014-3566, CVE-2014-6457)
February 2015| A vulnerability in IBM Java Runtime affects Cognos Metrics Manager (CVE-2014-4263)
January 2015| TLS padding vulnerability affects Cognos Business Intelligence (CVE-2014-8730)
December 2014| Cognos Business Intelligence Server is affected by multiple vulnerabilities (CVE-2014-3566, CVE-2014-6145, CVE-2014-1568, CVE-2014-4263, CVE-2012-5784, CVE-2014-3513, CVE-2014-3567 and CVE-2014-3568)
December 2014| A vulnerability in the Mozilla Network Security Services (NSS) affects Cognos Metrics Manager (CVE-2014-1568)
December 2014| A vulnerability in Apache Axis affects Cognos Metrics Manager (CVE-2012-5784)
December 2014| Multiple vulnerabilities in OpenSSL affect Cognos Metrics Manager (CVE-2014-3567, CVE-2014-3513, CVE-2014-3568)
December 2014| Vulnerability in SSLv3 affects Cognos Metrics Manager (CVE-2014-3566)
November 2014| Cognos BI Server is affected by the following vulnerabilities: CVE-2014-0107, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119, CVE-2014-0878, CVE-2014-0460
September 2014| Cognos Business Intelligence is not affected by the Bash vulnerabilities (CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277, and CVE-2014-6278)
September 2014| Cognos Metrics Manager is affected by the following IBM Java Runtime vulnerabilities: CVE-2014-0878, CVE-2014-0460
September 2014| Cognos Metrics Manager is affected by a vulnerability in Apache Xalan-Java (CVE-2014-0107)
September 2014| Cognos Metrics Manager is affected by the following Tomcat vulnerabilities: CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119
September 2014| OpenSSL Heartbleed Vulnerability
August 2014| Cognos Metrics Manager is affected by the following OpenSSL vulnerabilities: CVE-2014-0224
July 2014| Cognos BI Server is affected by the following OpenSSL vulnerability: CVE-2014-0224
July 2014| Security vulnerabilities have been identified in IBM DB2 shipped with Cognos Business Intelligence (CVE-2013-6747, CVE-2014-0963)
July 2014| A security vulnerability has been identified in IBM WebSphere Application Server shipped with Cognos Business Intelligence (CVE-2014-0114)
May 2014| Multiple security exposures in Cognos BI Server (CVE-2014- 0416, CVE-2014-0423, CVE-2013-4322)
March 2014| Multiple security exposures in Cognos BI Server (CVE-2013-6954, CVE-2013-6732, CVE-2013-5802, CVE-2013-5825, CVE-2014-0854, CVE-2014-0861)
November 2013| Cognos Business Intelligence (CVE-2013-3030, CVE-2013-4002, CVE-2013-2407, CVE-2013-2450, CVE-2013-4034, CVE-2013-5372)

-->

[{“Product”:{“code”:“SSTSF6”,“label”:“IBM Cognos Analytics”},“Business Unit”:{“code”:“BU053”,“label”:“Cloud & Data Platform”},“Component”:“–”,“Platform”:[{“code”:“PF025”,“label”:“Platform Independent”}],“Version”:“11.0”,“Edition”:“”,“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}},{“Product”:{“code”:“SSEP7J”,“label”:“Cognos Business Intelligence”},“Business Unit”:{“code”:“BU059”,“label”:“IBM Software w/o TPS”},“Component”:" “,“Platform”:[{“code”:”“,“label”:”“}],“Version”:“10.2;10.2.1;10.2.2”,“Edition”:”",“Line of Business”:{“code”:“LOB10”,“label”:“Data and AI”}}]