Lucene search
K

119 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2012-6205

Malware in sbrugna...

4.3CVSS6.4AI score0.00931EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-4109

Malware in sbrugna...

7.5CVSS7.8AI score0.0167EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2012-1084

Malware in sbrugna...

4.3CVSS6.4AI score0.0131EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-4110

Malware in sbrugna...

5.7CVSS6.2AI score0.00914EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-0893

Malware in sbrugna...

4CVSS6.4AI score0.01094EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-10522

Malware in sbrugna...

6.1CVSS6.5AI score0.01077EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-0907

Malware in sbrugna...

5CVSS6.4AI score0.01187EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2016-0416

Malware in sbrugna...

4.3CVSS4.8AI score0.00993EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 12:14 p.m.12 views

CVE-2012-1046

Cross-site scripting XSS vulnerability in TM1 Web in IBM Cognos TM1 9.5.2 FP1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2012-0696...

4.3CVSS5.7AI score0.0131EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2021/11/03 12:0 a.m.2 views

VulnCheck KEV: CVE-2019-4716

IBM Planning Analytics is vulnerable to a configuration overwrite that allows an unauthenticated user to login as "admin", and then execute code as root or SYSTEM via TM1 scripting...

10CVSS7.2AI score0.86441EPSS
Exploits6References1
CISA KEV Catalog
CISA KEV Catalog
added 2021/11/03 12:0 a.m.31 views

IBM Planning Analytics Remote Code Execution Vulnerability

IBM Planning Analytics is vulnerable to a configuration overwrite that allows an unauthenticated user to login as "admin", and then execute code as root or SYSTEM via TM1 scripting...

10CVSS9.1AI score0.86441EPSS
In wildExploits6
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/20 6:42 p.m.23 views

Additional Information About CVE-2019-4716

On February 11th the following Security Bulletin was released: https://www.ibm.com/support/pages/node/1127781 This article provides important details about CVE-2019-4716. This vulnerability impacts the TM1 database component from IBM Planning Analytics Local and IBM Planning Analytics on Cloud...

10CVSS1AI score0.86441EPSS
Exploits6
IBM Security Bulletins
IBM Security Bulletins
added 2021/02/09 3:56 p.m.37 views

Security Bulletin: IBM Planning Analytics has addressed a security vulnerability (CVE-2016-2183)

Summary This Security Bulletin addresses a security vulnerability that has been remediated in IBM Planning Analytics 2.0.9.5 Vulnerability Details CVEID: CVE-2016-2183 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an error in the DES/3DES cipher, us...

7.5CVSS0.6AI score0.95707EPSS
Exploits7Affected Software1
0day.today
0day.today
added 2020/03/31 12:0 a.m.233 views

IBM TM1 / Planning Analytics - Unauthenticated Remote Code Execution Exploit (2)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'openssl' class MetasploitModule "IBM TM1 / Planning Analytics Unauthenticated Remote Code Execution", 'Description' = %q This module exploits a vulnerability in...

10CVSS0.6AI score0.86441EPSS
Exploits6
Exploit DB
Exploit DB
added 2020/03/31 12:0 a.m.222 views

IBM TM1 / Planning Analytics - Unauthenticated Remote Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'openssl' class MetasploitModule "IBM TM1 / Planning Analytics Unauthenticated Remote Code Execution", 'Description' = %q This module exploits a vulnerability in...

10CVSS7.4AI score0.86441EPSS
Exploits6
Packet Storm
Packet Storm
added 2020/03/28 12:0 a.m.347 views

IBM Cognos TM1 / IBM Planning Analytics Server Configuration Overwrite / Code Execution

Hi, Here's a fun one I have been working on for some time. tl;dr IBM PA / TM1, dating back to 2014, maybe 2009 is vulnerable to a unauthenticated configuration overwrite; this is abused to "fake authenticate" to it, and finally execute code as root / SYSTEM using TM1 scripting. Advisory below,...

10CVSS0.1AI score0.86441EPSS
Exploits6
0day.today
0day.today
added 2020/03/28 12:0 a.m.354 views

IBM Cognos TM1 / IBM Planning Analytics Server Configuration Overwrite / Code Execution Exploit

IBM Cognos TM1 Server / Planning Analytics Server TM1 suffers from a configuration overwrite vulnerability that can be leveraged to achieve code execution as SYSTEM via TM1 scripting. Extensive research is included in this advisory as well as the Metasploit module. IBM PA / TM1, dating back to...

10CVSS0.7AI score0.86441EPSS
Exploits6
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/24 7:27 a.m.34 views

Security Bulletin: Security Vulnerabilities have been identified in IBM Cognos Business Intelligence used with IBM Cognos TM1 (CVE-2016-0217, CVE-2016-0221).

Summary IBM Cognos Business Intelligence integrates with IBM Cognos TM1. Information about a security vulnerability affecting IBM Cognos Business Intelligence has been published in a security bulletin. Vulnerability Details Please consult the security bulletin Security Bulletin: IBM Cognos Busine...

3.1AI score0.01104EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/24 7:27 a.m.20 views

Security Bulletin: Multiple Security Vulnerabilities exist in IBM Cognos TM1

Summary Several vulnerabilities have been addressed for: IBM SDK, Java Technology Edition Quarterly CPU - Jul 2016; Recover Password with Valid Session Key; System Name Stored Cross-site Scripting; TM1 Server Stack Exhaustion Denial of Service; OpenSource OpenSSL; Sweet32: Birthday attacks on...

9.8CVSS0.9AI score0.95707EPSS
Exploits8Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/24 7:27 a.m.41 views

Security Bulletin: Multiple Security Vulnerabilities exist in IBM Cognos TM1

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 7 used by IBM Cognos TM1. These issues were disclosed as part of the IBM Java SDK updates in January 2018 and April 2018. Multiple Open Source OpenSSL vulnerabilities have also been addressed. Vulnerability Detai...

7.4CVSS8.1AI score0.19295EPSS
Exploits0Affected Software1
Rows per page
Query Builder