2 matches found
Security Bulletin: A security vulnerability has been addressed in IBM Cognos Analytics (CVE-2019-4178)
Summary This bulletin addresses a security vulnerability that has been fixed in IBM Cognos Analytics 11.0.13 FP1 as well as 11.0.9-11.0.12 Interim Fixes. IBM Cognos Analytics could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL reques...
CVE-2019-4178
IBM Cognos Analytics 11.x could allow a remote attacker to traverse directories by sending a specially crafted URL, enabling writing or viewing arbitrary files. Affected versions: 11.0.8.0 to 11.0.13.0. Remediation: upgrade to IBM Cognos Analytics 11.0.13 Fix Pack 1 or apply the listed interim fi...