2 matches found
CVE-2023-43051
IBM Cognos Analytics 11.1.7, 11.2.4, and 12.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID:...
CVE-2023-43051
IBM Cognos Analytics is affected by CVE-2023-43051 (XSS) in versions 11.1.7, 11.2.4, and 12.0.0, enabling embedding of arbitrary JavaScript in the Web UI and potentially credential disclosure within a trusted session. The issue is addressed by upgrading to: 12.0.2 for 12.0.x, 11.2.4 FP3 for 11.2....