Lucene search
+L

1013 matches found

Cvelist
Cvelist
added 2 hours ago6 views

CVE-2026-15995 IBM Cognos Analytics 12.1.3 general availability package contains a data integrity issue in the Agentic AI assistant that may cause incorrect report summaries or report-processing errors under concurrent use

IBM Cognos Analytics 12.1.3 GA Version with build number through 12.1.3-2606251736 could allow an attacker to obtain incorrect report summary results or cause report-processing failures due to a race condition in the Agentic AI assistant's concurrent request-handling logic when multiple...

5.4CVSS
Exploits0References1
CVE
CVE
added 2 hours ago7 views

CVE-2026-15995

Summary of CVE-2026-15995 : IBM Cognos Analytics 12.1.3 GA (build up to 12.1.3-2606251736) contains a race condition in the Agentic AI assistant’s concurrent request handling. Under certain concurrent usage, two authenticated users submitting the same action can cause incorrect report summaries o...

5.4CVSS5.3AI score
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 17 hours ago3 views

Security Bulletin: IBM Cognos Analytics 12.1.3 general availability package contains a data integrity issue in the Agentic AI assistant that may cause incorrect report summaries or report-processing errors under concurrent use (CVE-2026-15995)

Summary The IBM Cognos Analytics 12.1.3 general availability package contains a data integrity issue in the Agentic AI assistant used by authorized analysts to query report summaries and perform related tasks. Under certain concurrent usage conditions, when two authenticated users submit the same...

5.4AI score
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/05 7:42 p.m.15 views

CVE-2025-3633

IBM Cognos Analytics 11.2.0, 11.2.4, 12.0, and 12.1.0 and IBM Cognos Transformer 11.2.4, 12.0, and 12.1.0 are vulnerable to cross-site scripting XSS. This vulnerability allows a remote attacker to inject arbitrary JavaScript code into the web user interface, which may alter the intended...

8.2CVSS5.4AI score0.0031EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/27 8:13 p.m.16 views

CVE-2025-36126

IBM Cognos Analytics 11.2.0, 12.0, and 12.1.0 and IBM Cognos Transformer 12.0, 11.2.4, and 12.1.0 is vulnerable to stored cross-site scripting XSS in Cognos Adminstration. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended...

7.6CVSS5.8AI score0.00185EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/27 3:33 p.m.14 views

EUVD-2025-209974

IBM Cognos Analytics 11.2.0, 11.2.4, 12.0, and 12.1.0 and IBM Cognos Transformer 11.2.4, 12.0, and 12.1.0 are vulnerable to cross-site scripting XSS. This vulnerability allows a remote attacker to inject arbitrary JavaScript code into the web user interface, which may alter the intended...

5.4CVSS5.8AI score0.0031EPSS
Exploits0References2
NVD
NVD
added 2026/05/27 2:16 p.m.14 views

CVE-2025-3633

IBM Cognos Analytics 11.2.0, 11.2.4, 12.0, and 12.1.0 and IBM Cognos Transformer 11.2.4, 12.0, and 12.1.0 are vulnerable to cross-site scripting XSS. This vulnerability allows a remote attacker to inject arbitrary JavaScript code into the web user interface, which may alter the intended...

8.2CVSS0.0031EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/27 12:17 p.m.43 views

CVE-2025-3633 IBM Cognos Analytics is affected by multiple security vulnerabilities

IBM Cognos Analytics 11.2.0, 11.2.4, 12.0, and 12.1.0 and IBM Cognos Transformer 11.2.4, 12.0, and 12.1.0 are vulnerable to cross-site scripting XSS. This vulnerability allows a remote attacker to inject arbitrary JavaScript code into the web user interface, which may alter the intended...

5.4CVSS0.0031EPSS
Exploits0References1
CVE
CVE
added 2026/05/27 12:17 p.m.18 views

CVE-2025-3633

CVE-2025-3633 affects IBM Cognos Analytics (versions 11.2.0, 11.2.4, 12.0, 12.1.0) and IBM Cognos Transformer (11.2.4, 12.0, 12.1.0). The vulnerability is a cross-site scripting (XSS) issue in the web UI that could allow a remote attacker to inject arbitrary JavaScript, potentially leading to dis...

8.2CVSS5.8AI score0.0031EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2026/05/27 12:17 p.m.10 views

CVE-2025-3633 IBM Cognos Analytics is affected by multiple security vulnerabilities

IBM Cognos Analytics 11.2.0, 11.2.4, 12.0, and 12.1.0 and IBM Cognos Transformer 11.2.4, 12.0, and 12.1.0 are vulnerable to cross-site scripting XSS. This vulnerability allows a remote attacker to inject arbitrary JavaScript code into the web user interface, which may alter the intended...

5.4CVSS5.8AI score0.0031EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.13 views

PT-2026-43686

Name of the Vulnerable Software and Affected Versions IBM Cognos Analytics versions 11.2.0, 11.2.4, 12.0, and 12.1.0 IBM Cognos Transformer versions 11.2.4, 12.0, and 12.1.0 Description Cross-site scripting XSS allows a remote attacker to inject arbitrary JavaScript code into the web user...

8.2CVSS5.6AI score0.0031EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.11 views

IBM Cognos Analytics和IBM Cognos Transformer 跨站脚本漏洞

IBM Cognos Analytics and IBM Cognos Transformer are products of American International Business Machines IBM. IBM Cognos Analytics is a business intelligence software suite. This software includes reports, dashboards, and scorecards, and can assist businesses in adjusting their decisions by...

5.4CVSS5.9AI score0.0031EPSS
Exploits0References1
NVD
NVD
added 2026/05/26 5:16 p.m.13 views

CVE-2025-36126

IBM Cognos Analytics 11.2.0, 12.0, and 12.1.0 and IBM Cognos Transformer 12.0, 11.2.4, and 12.1.0 is vulnerable to stored cross-site scripting XSS in Cognos Adminstration. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended...

7.6CVSS0.00185EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/26 3:52 p.m.14 views

CVE-2025-36126 IBM Cognos Analytics is affected by Cross-site scripting.

IBM Cognos Analytics 11.2.0, 12.0, and 12.1.0 and IBM Cognos Transformer 12.0, 11.2.4, and 12.1.0 is vulnerable to stored cross-site scripting XSS in Cognos Adminstration. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended...

6.4CVSS5.8AI score0.00185EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/26 3:52 p.m.14 views

EUVD-2025-209930

IBM Cognos Analytics 11.2.0, 12.0, and 12.1.0 and IBM Cognos Transformer 12.0, 11.2.4, and 12.1.0 is vulnerable to stored cross-site scripting XSS in Cognos Adminstration. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended...

6.4CVSS5.8AI score0.00185EPSS
Exploits0References1
CVE
CVE
added 2026/05/26 3:52 p.m.17 views

CVE-2025-36126

IBM Cognos Analytics (versions 11.2.0, 12.0, 12.1.0) and IBM Cognos Transformer (12.0, 11.2.4, 12.1.0) are affected by a stored cross-site scripting (XSS) vulnerability in Cognos Administration. The issue allows a privileged user to embed arbitrary JavaScript in the Web UI, potentially altering f...

7.6CVSS5.8AI score0.00185EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2026/05/26 3:52 p.m.42 views

CVE-2025-36126 IBM Cognos Analytics is affected by Cross-site scripting.

IBM Cognos Analytics 11.2.0, 12.0, and 12.1.0 and IBM Cognos Transformer 12.0, 11.2.4, and 12.1.0 is vulnerable to stored cross-site scripting XSS in Cognos Adminstration. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended...

6.4CVSS0.00185EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/26 3:52 p.m.9 views

CVE-2025-36126

IBM Cognos Analytics 11.2.0, 12.0, and 12.1.0 and IBM Cognos Transformer 12.0, 11.2.4, and 12.1.0 is vulnerable to stored cross-site scripting XSS in Cognos Adminstration. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended...

6.4CVSS5.8AI score0.00185EPSS
Exploits0References2Affected Software2
CNNVD
CNNVD
added 2026/05/26 12:0 a.m.12 views

IBM Cognos Analytics和IBM Cognos Transformer 跨站脚本漏洞

IBM Cognos Analytics and IBM Cognos Transformer are products of American International Business Machines IBM. IBM Cognos Analytics is a business intelligence software suite. This software includes reports, dashboards, and scorecards, and can assist businesses in adjusting their decisions by...

7.6CVSS5.8AI score0.00185EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/26 12:0 a.m.16 views

PT-2026-43279

IBM Cognos Analytics 11.2.0, 12.0, and 12.1.0 and IBM Cognos Transformer 12.0, 11.2.4, and 12.1.0 is vulnerable to stored cross-site scripting XSS in Cognos Adminstration. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended...

6.4CVSS5.8AI score0.00185EPSS
Exploits0References2
Rows per page
Query Builder