Vulners
Lucene search
IBM Cognos 11.0 Content Spoofing
| Reporter | Title | Published | Views | Family All 9 |
|---|---|---|---|---|
 | Security Bulletin: IBM Cognos Business Intelligence Server : IBM Cognos Business Intelligence Server is affected by CVE-2016-0398 | 15 Jun 201823:16 | – | ibm |
| Security Bulletin: IBM Cognos Analytics : IBM Cognos Analytics is affected by CVE-2016-0398 | 15 Jun 201823:15 | – | ibm |
| Security Bulletins - Cognos Analytics and Cognos Business Intelligence | 19 Jul 201816:57 | – | ibm |
 | IBM Cognos Analytics Content Spoofing Vulnerability | 2 Jun 201600:00 | – | cnvd |
 | CVE-2016-0398 | 2 Jul 201614:00 | – | cve |
 | CVE-2016-0398 | 2 Jul 201614:00 | – | cvelist |
 | EUVD-2016-0433 | 7 Oct 202500:30 | – | euvd |
 | CVE-2016-0398 | 2 Jul 201614:59 | – | nvd |
 | Spoofing | 2 Jul 201614:59 | – | prion |
`/*
Content Spoofing Vulnerability in IBM Cognos Analytics Applications
Advisory 5190
Patch Release - 30 May 2016
Public Release - 03 June 2016
CVE-2016-0398
The IBM Security Bulletins associated with this CVE have been published at the following URLs:
IBM Cognos Analytics 11.0 http://www.ibm.com/support/docview.wss?uid=swg21977070IBM Cognos Analytics 10.x http://www.ibm.com/support/docview.wss?uid=swg21983247
Products or solutions and versions affected - IBM Cognos 10.x, 11.0
Summary - IBM Cognos Analytics 10.x and 11.0 applications are affected by Content Spoofing vulnerability which is an attack technique that allows an attacker to inject a malicious payload that is later misrepresented as legitimate content of a web application. This does not require any authentication.
Payload
https://TargetURL/cognos1021/cgi-bin/cognos.cgi?b_action=icd&pathinfo=Your_Text_Here
*/
Regards,Sonal Moon
`
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
03 Jun 2016 00:00Current
5.2Medium risk
Vulners AI Score5.2
EPSS0.0031