Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
IbmCognos Analytics11.0.3

11 matches found

CVE
CVEadded 2018/01/29 4:29 p.m.48 views

CVE-2017-1779

IBM Cognos Analytics 11.0 could store cached credentials locally that could be obtained by a local user. IBM X-Force ID: 136824.

7.8CVSS7.2AI score0.00103EPSS
CVE
CVEadded 2018/01/29 4:29 p.m.46 views

CVE-2017-1784

IBM Cognos Analytics 11.0 could produce results in temporary files that contain highly sensitive information that can be read by a local user. IBM X-Force ID: 136858.

5.5CVSS5.4AI score0.00153EPSS
CVE
CVEadded 2017/02/01 10:59 p.m.45 views

CVE-2016-0217

IBM Cognos Business Intelligence and IBM Cognos Analytics are vulnerable to stored cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability to inject malicious script into a Web page which would be executed in a victim's Web brow...

5.4CVSS6.2AI score0.00158EPSS
CVE
CVEadded 2017/04/05 6:59 p.m.45 views

CVE-2016-3015

IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: 1998887.

5.4CVSS5.2AI score0.00258EPSS
CVE
CVEadded 2017/08/29 9:29 p.m.42 views

CVE-2017-1485

IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 128623.

5.4CVSS5.6AI score0.00198EPSS
CVE
CVEadded 2017/05/10 2:29 p.m.41 views

CVE-2016-3032

IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 114516.

5.4CVSS5.2AI score0.00243EPSS
CVE
CVEadded 2018/01/29 4:29 p.m.41 views

CVE-2017-1783

IBM Cognos Analytics 11.0 could allow a local user to change parameters set from the Cognos Analytics menus without proper authentication. IBM X-Force ID: 136857.

4CVSS4.7AI score0.00086EPSS
CVE
CVEadded 2017/04/05 6:59 p.m.39 views

CVE-2016-3031

IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: 1998887.

5.4CVSS5.2AI score0.00258EPSS
CVE
CVEadded 2017/08/29 9:29 p.m.39 views

CVE-2017-1427

IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 127579.

6.1CVSS6AI score0.00285EPSS
CVE
CVEadded 2017/08/29 9:29 p.m.38 views

CVE-2017-1428

IBM Cognos Analytics 11.0 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. ...

6.1CVSS6.7AI score0.00257EPSS
CVE
CVEadded 2017/08/29 9:29 p.m.36 views

CVE-2017-1535

IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 130677.

5.4CVSS5.3AI score0.00269EPSS