Information disclosure

2020-04-2714:15:00

PRIOn knowledge base

www.prio-n.com

4.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.5%

JSON

IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 172519.

CPENameOperatorVersion
cognos_analyticsge11.1.0
cognos_analyticslt11.1.6
cognos_analyticsge11.0.0.0
cognos_analyticslt11.0.13

Name	Operator	Version
cognos_analytics	ge	11.1.0
cognos_analytics	lt	11.1.6
cognos_analytics	ge	11.0.0.0
cognos_analytics	lt	11.0.13

References

exchange.xforce.ibmcloud.com/vulnerabilities/172519

security.netapp.com/advisory/ntap-20200504-0002/

www.ibm.com/support/pages/node/6193425