3 matches found
Design/Logic Flaw
IBM Tivoli Common Reporting TCR 2.1 before IF14, 2.1.1 before IF22, 2.1.1.2 before IF9, 3.1.0.0 through 3.1.2 as used in Cognos Business Intelligence before 10.2 IF16, and 3.1.2.1 as used in Cognos Business Intelligence before 10.2.1.1 IF12 allows local users to bypass the Cognos Application...
CVE-2015-7435
CVE-2015-7435 affects IBM Tivoli Common Reporting (TCR) used with Cognos BI; a leading-space in the BackURL field can bypass the Cognos Application Firewall (CAF). Affected versions include TCR 2.1 (before IF14) and 2.1.1 (before IF22), 2.1.1.2 (before IF9), and 3.1.0.0–3.1.2 (as used in Cognos B...
CVE-2015-7435
IBM Tivoli Common Reporting TCR 2.1 before IF14, 2.1.1 before IF22, 2.1.1.2 before IF9, 3.1.0.0 through 3.1.2 as used in Cognos Business Intelligence before 10.2 IF16, and 3.1.2.1 as used in Cognos Business Intelligence before 10.2.1.1 IF12 allows local users to bypass the Cognos Application...