Cognos Business Intelligence@10.2.1 Security Vulnerabilities and Issues — Cognos Business Intelligence@10.2.1 CVE List

Lucene search

IbmCognos Business Intelligence10.2.1

5 matches found

CVE•added 2013/08/27 3:34 a.m.•42 views

CVE-2013-2978

Absolute path traversal vulnerability in the server in IBM Cognos Business Intelligence (BI) 8.4.1, 10.1, 10.1.1, 10.2, and 10.2.1 allows remote authenticated users to read files by leveraging the Report Author privilege, a different vulnerability than CVE-2013-2988.

2.1CVSS6AI score0.00431EPSS

CVE•added 2013/08/27 3:34 a.m.•39 views

CVE-2013-0586

Cross-site scripting (XSS) vulnerability in the server in IBM Cognos Business Intelligence (BI) 8.4.1, 10.1, 10.1.1, 10.2, and 10.2.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

3.5CVSS5.2AI score0.00201EPSS

CVE•added 2013/08/27 3:34 a.m.•39 views

CVE-2013-2988

2.6CVSS6AI score0.00431EPSS

CVE•added 2013/11/18 3:55 a.m.•39 views

CVE-2013-4034

IBM Cognos Business Intelligence 8.4.1 before IF3, 10.1.0 before IF4, 10.1.1 before IF4, 10.2.0 before IF4, 10.2.1 before IF2, and 10.2.1.1 before IF1 allows remote authenticated users to read arbitrary files via an XML external entity declaration in conjunction with an entity reference, related to...

4CVSS8.6AI score0.0543EPSS

CVE•added 2013/11/18 3:55 a.m.•34 views

CVE-2013-3030

The servlet gateway in IBM Cognos Business Intelligence 8.4.1 before IF3, 10.1.0 before IF4, 10.1.1 before IF4, 10.2.0 before IF4, 10.2.1 before IF2, and 10.2.1.1 before IF1 allows remote attackers to cause a denial of service (temporary gateway outage) via crafted HTTP requests.

5CVSS8.9AI score0.01207EPSS