CVE-2017-1125
CVE-2017-1125 affects IBM Cognos Analytics 10.1 and 10.2, allowing a local user to craft a URL that confirms existence of and excerpts from a file on the server (information disclosure). Root cause is a URL-based confirmation/exposure mechanism for local files. Impact is partial confidentiality l...