CVE-2020-4876
CVE-2020-4876 is an XML External Entity Injection (XXE) vulnerability in IBM Cognos Controller 10.4.0–10.4.2 when processing XML data. A remote attacker could expose sensitive information or trigger resource consumption. Affected versions are 10.4.0, 10.4.1, and 10.4.2. IBM has addressed this thr...