Lucene search
+L

87 matches found

NVD
NVD
added 2025/08/26 5:15 p.m.6 views

CVE-2025-1494

IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attack...

6.1CVSS0.00271EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/26 4:49 p.m.9 views

CVE-2025-1994 IBM Cognos Command Center code execution

IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a local user to execute arbitrary code on the system due to the use of unsafe use of the BinaryFormatter function...

7.8CVSS0.00148EPSS
Exploits0References1
CVE
CVE
added 2025/08/26 4:49 p.m.24 views

CVE-2025-1994

CVE-2025-1994 affects IBM Cognos Command Center versions 10.2.4.1 and 10.2.5. The root cause is unsafe use of the BinaryFormatter function, enabling a local user to execute arbitrary code on the system. Confirmed details from multiple sources indicate local code execution risk with high impact ac...

7.8CVSS7.2AI score0.00148EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/26 4:49 p.m.3 views

CVE-2025-1994 IBM Cognos Command Center code execution

IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a local user to execute arbitrary code on the system due to the use of unsafe use of the BinaryFormatter function...

7.8CVSS7.2AI score0.00148EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/26 4:47 p.m.2 views

CVE-2025-2697 IBM Cognos Command Center HTTP Open Redirect

IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to...

7.4CVSS5.9AI score0.00336EPSS
Exploits0References1
CVE
CVE
added 2025/08/26 4:47 p.m.22 views

CVE-2025-2697

IBM Cognos Command Center versions 10.2.4.1 and 10.2.5 are affected by an open redirect vulnerability that can be exploited to spoof URLs and direct users to a malicious site, enabling phishing and potential data exposure. Remediation provided by IBM and vendor advisories is to upgrade to a fixed...

9.3CVSS5.9AI score0.00336EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/08/26 4:47 p.m.11 views

CVE-2025-2697 IBM Cognos Command Center HTTP Open Redirect

IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to...

7.4CVSS0.00336EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/26 4:45 p.m.3 views

CVE-2025-1494 IBM Cognos Command Center clickjacking

IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attack...

6.1CVSS6.5AI score0.00271EPSS
Exploits0References1
CVE
CVE
added 2025/08/26 4:45 p.m.33 views

CVE-2025-1494

IBM Cognos Command Center versions 10.2.4.1 and 10.2.5 are affected by a clickjacking vulnerability (CWE-1021) that could allow a remote attacker to hijack a victim’s click actions by luring them to a malicious website. The CVE-2025-1494 vulnerability has CVSS v3.1: AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:...

6.1CVSS6.5AI score0.00271EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/08/26 4:45 p.m.10 views

CVE-2025-1494 IBM Cognos Command Center clickjacking

IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attack...

6.1CVSS0.00271EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/08/26 4:14 p.m.6 views

Security Bulletin: Multiple vulnerabilities in IBM Cognos Command Center

Summary There are vulnerabilities in IBM® Semeru Java™ used by IBM Cognos Command Center. Additionally, IBM Cognos Command Center is vulnerable to Open redirection, Clickjacking and Arbitary code execution vulnerabilities. This Security Bulletin relates only to the direct usage of third-party...

9.3CVSS8.7AI score0.0073EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/26 12:0 a.m.4 views

PT-2025-34792 · Ibm · Ibm Cognos Command Center

Name of the Vulnerable Software and Affected Versions: IBM Cognos Command Center versions 10.2.4.1 through 10.2.5 Description: IBM Cognos Command Center is susceptible to an open redirect attack, potentially enabling a remote attacker to conduct phishing attacks. A crafted website can be used to...

7.4CVSS6.8AI score0.00336EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/08/26 12:0 a.m.3 views

IBM Cognos Command Center 安全漏洞

IBM Cognos Command Center is a solution for automating business processes that simplifies operational complexity across multiple software environments by allowing users to view, execute and monitor automated processes through a single interface. A clickjacking vulnerability exists in IBM Cognos...

6.1CVSS5.8AI score0.00271EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/26 12:0 a.m.3 views

IBM Cognos Command Center 安全漏洞

IBM Cognos Command Center is a solution for automating business processes that simplifies operational complexity across multiple software environments by allowing users to view, execute and monitor automated processes through a single interface. A code execution vulnerability exists in IBM Cognos...

7.8CVSS6.4AI score0.00148EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/26 12:0 a.m.3 views

IBM Cognos Command Center 输入验证错误漏洞

IBM Cognos Command Center is a solution for automating business processes that simplifies operational complexity across multiple software environments by allowing users to view, execute and monitor automated processes through a single interface. A redirection vulnerability exists in IBM Cognos...

9.3CVSS5.8AI score0.00336EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/26 12:0 a.m.6 views

PT-2025-34791 · Ibm · Ibm Cognos Command Center

Name of the Vulnerable Software and Affected Versions: IBM Cognos Command Center versions 10.2.4.1 through 10.2.5 Description: IBM Cognos Command Center versions 10.2.4.1 and 10.2.5 may allow a local user to execute arbitrary code on the system due to the unsafe use of the BinaryFormatter functio...

7.8CVSS7.8AI score0.00148EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/26 12:0 a.m.11 views

PT-2025-34790 · Ibm · Ibm Cognos Command Center

Name of the Vulnerable Software and Affected Versions: IBM Cognos Command Center versions 10.2.4.1 through 10.2.5 Description: IBM Cognos Command Center versions 10.2.4.1 and 10.2.5 may allow a remote attacker to hijack a victim’s click actions. This can occur when a victim visits a malicious...

6.1CVSS7.1AI score0.00271EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 9:49 p.m.8 views

CVE-2022-38707

IBM Cognos Command Center 10.2.4.1 could allow a local attacker to obtain sensitive information due to insufficient session expiration. IBM X-Force ID: 234179...

5.5CVSS5.7AI score0.00164EPSS
Exploits0
OSV
OSV
added 2024/09/26 2:15 p.m.7 views

CVE-2024-31899

IBM Cognos Command Center 10.2.4.1 and 10.2.5 could disclose highly sensitive user information to an authenticated user with physical access to the device...

4.3CVSS5.8AI score0.00184EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/26 12:0 a.m.5 views

PT-2024-24273 · Ibm · Ibm Cognos Command Center

Name of the Vulnerable Software and Affected Versions: IBM Cognos Command Center versions 10.2.4.1 through 10.2.5 Description: The issue could disclose highly sensitive user information to an authenticated user with physical access to the device. Recommendations: For versions 10.2.4.1 and 10.2.5,...

4.3CVSS6.5AI score0.00184EPSS
Exploits0References6
Rows per page
Query Builder