3 matches found
CVE-2016-3037
IBM Cognos TM1 10.1 and 10.2 provides a service to return the victim's password with a valid session key. An authenticated attacker with user interaction could obtain this sensitive information. IBM X-Force ID: 114613...
CVE-2016-3037
IBM Cognos TM1 10.1 and 10.2 provides a service to return the victim's password with a valid session key. An authenticated attacker with user interaction could obtain this sensitive information. IBM X-Force ID: 114613...
CVE-2016-3037
IBM Cognos TM1 10.1 and 10.2 contain a vulnerability where a service can return the victim’s password when a valid session key is present. An authenticated attacker who can interact with the UI could obtain this sensitive information, impacting confidentiality. Affected releases include TM1 10.1,...