19 matches found
EUVD-2014-4729
Malware in sbrugna...
EUVD-2023-41836
Malicious code in bioql PyPI...
CVE-2023-38009
IBM Cognos Mobile Client 1.1 iOS may be vulnerable to information disclosure through man in the middle techniques due to the lack of certificate pinning...
CVE-2024-55907 IBM Cognos Mobile information disclosure
IBM Cognos Analytics Mobile 1.1 for iOS application could allow an attacker to reverse engineer the codebase to gain knowledge about the programming technique, interface, class definitions, algorithms and functions used due to weak obfuscation...
CVE-2024-55907
CVE-2024-55907 affects IBM Cognos Analytics Mobile (iOS) version 1.1. The issue arises from weak code obfuscation, enabling an attacker to reverse engineer the codebase to learn about techniques, interfaces, class definitions, algorithms and functions used. IBM’s security bulletin confirms remedi...
CVE-2024-55907 IBM Cognos Mobile information disclosure
IBM Cognos Analytics Mobile 1.1 for iOS application could allow an attacker to reverse engineer the codebase to gain knowledge about the programming technique, interface, class definitions, algorithms and functions used due to weak obfuscation...
CVE-2025-0895 IBM Cognos Mobile information disclosure
IBM Cognos Analytics Mobile 1.1 for Android could allow a user with physical access to the device, to obtain sensitive information from debugging code log messages...
CVE-2025-0895 IBM Cognos Mobile information disclosure
IBM Cognos Analytics Mobile 1.1 for Android could allow a user with physical access to the device, to obtain sensitive information from debugging code log messages...
CVE-2025-0895
CVE-2025-0895 affects IBM Cognos Analytics Mobile (Android) 1.1. The issue allows information disclosure via debugging code log messages when a user has physical access to the device. Root cause is exposure of sensitive data in debug logs. According to IBM’s Security Bulletin, remediation is to u...
IBM Cognos Mobile Client Trust Management Issue Vulnerability
IBM Cognos Mobile Client is a mobile application for the IBM Cognos BI platform from International Business Machines IBM. IBM Cognos Mobile Client suffers from a trust management issue vulnerability that stems from a lack of certificate fixing, which can be exploited by an attacker to cause...
CVE-2023-38009
IBM Cognos Mobile Client 1.1 iOS may be vulnerable to information disclosure through man in the middle techniques due to the lack of certificate pinning...
IBM Cognos Mobile Client 信任管理问题漏洞
IBM Cognos Mobile Client is a mobile application for the IBM Cognos BI platform from International Business Machines IBM. IBM Cognos Mobile Client suffers from a trust management issue vulnerability that stems from a lack of certificate fixing, which can be exploited by an attacker to cause...
PT-2025-1438 · Ibm · Ibm Cognos Mobile Client
Name of the Vulnerable Software and Affected Versions: IBM Cognos Mobile Client version 1.1 iOS Description: The issue is related to information disclosure through man-in-the-middle techniques due to the lack of certificate pinning. This could potentially allow unauthorized access to sensitive...
CVE-2022-34357
IBM Cognos Analytics Mobile Server 11.1.7, 11.2.4, and 12.0.0 is vulnerable to Denial of Service due to due to weak or absence of rate limiting. By making unlimited http requests, it is possible for a single user to exhaust server resources over a period of time making service unavailable for oth...
Security Bulletin: Vulnerability in Diffie-Hellman ciphers affects IBM Cognos Mobile app on Android (CVE-2015-4000)
Summary The Logjam Attack on TLS connections using the Diffie-Hellman DH key exchange protocol affects IBM Cognos Mobile app on Android. Vulnerability Details CVEID: CVE-2015-4000 DESCRIPTION: The TLS protocol could allow a remote attacker to obtain sensitive information, caused by the failure to...
Security Bulletin: Vulnerability in RC4 stream cipher affects IBM Cognos Mobile app on Android (CVE-2015-2808)
Summary The RC4 “Bar Mitzvah” Attack for SSL/TLS affects IBM Cognos Mobile app on Android. Vulnerability Details CVEID: CVE-2015-2808 DESCRIPTION: The RC4 algorithm, as used in the TLS protocol and SSL protocol, could allow a remote attacker to obtain sensitive information. An attacker could...
Authentication flaw
IBM Cognos Mobile 10.1.1 before FP3 IF1, 10.2.0 before FP2 IF1, and 10.2.1 before FP4 IF1 preserves a session between the Cognos Mobile server and the Cognos Business Intelligence server after a logoff action on a mobile device, which makes it easier for remote attackers to bypass intended Busine...
CVE-2014-4810
IBM Cognos Mobile 10.1.1 before FP3 IF1, 10.2.0 before FP2 IF1, and 10.2.1 before FP4 IF1 preserves a session between the Cognos Mobile server and the Cognos Business Intelligence server after a logoff action on a mobile device, which makes it easier for remote attackers to bypass intended Busine...
CVE-2014-4810
The CVE-2014-4810 entry affects IBM Cognos Mobile. According to the sources, IBM Cognos Mobile 10.1.1 before FP3 IF1, 10.2.0 before FP2 IF1, and 10.2.1 before FP4 IF1 preserve a session between the Cognos Mobile server and the Cognos BI server after a user logs off on a mobile device. This behavi...