2 matches found
CVE-2020-4388
IBM Cognos Analytics 11.0 and 11.1 are affected by a denial-of-service vulnerability caused by failing to catch exceptions in a servlet, which can leak debug information and enable DoS in future attacks. Affected product: IBM Cognos Analytics 11.0, 11.1 (servlet handling). Root cause: unhandled e...
Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilities
Summary Security vulnerabilities have been addressed in IBM Cognos Analytics. Vulnerability Details CVEID: CVE-2020-1747 DESCRIPTION: PyYAML could allow a remote attacker to execute arbitrary code on the system, caused by an error when processing untrusted YAML files through the fullload method o...