3 matches found
Security Bulletin: Multiple vulnerabilities affect IBM Planning Analytics (CVE-2018-3180, CVE-2013-1624, CVE-2018-1933, CVE-2015-1832, CVE-2018-15494)
Summary This Security Bulletin addresses multiple vulnerabilities that have been remediated in IBM Planning Analytics 2.0.7. There is a vulnerability in IBM® Runtime Environment Java™ used by IBM Planning Analytics 2.0.6 and lower. IBM Planning Analytics 2.0.7 has addressed the applicable CVE by...
CVE-2018-1933
IBM Planning Analytics 2.0 through 2.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 153177...
CVE-2018-1933
CVE-2018-1933 affects IBM Planning Analytics 2.0 through 2.0.6, with a cross-site scripting vulnerability in the Web UI that could allow an attacker to inject JavaScript and potentially disclose credentials within a trusted session. The IBM Security Bulletin notes remediation in IBM Planning Anal...