Cognos Command Center Security Vulnerabilities and Issues — Cognos Command Center CVE List

Lucene search

IbmCognos Command Center

5 matches found

CVE•added 2024/03/01 2:15 a.m.•74 views

CVE-2023-50324

IBM Cognos Command Center 10.2.4.1 and 10.2.5 exposes details the X-AspNet-Version Response Header that could allow an attacker to obtain information of the application environment to conduct further attacks. IBM X-Force ID: 275038.

5.3CVSS5AI score0.00062EPSS

CVE•added 2024/09/26 2:15 p.m.•50 views

CVE-2024-31899

IBM Cognos Command Center 10.2.4.1 and 10.2.5 could disclose highly sensitive user information to an authenticated user with physical access to the device.

4.3CVSS4.2AI score0.00036EPSS

CVE•added 2013/12/14 10:55 p.m.•35 views

CVE-2013-4001

Session fixation vulnerability in IBM Cognos Command Center before 10.2 allows remote attackers to hijack web sessions via an authorization cookie.

4.3CVSS6.7AI score0.00185EPSS

CVE•added 2023/05/05 2:15 p.m.•32 views

CVE-2022-38707

IBM Cognos Command Center 10.2.4.1 could allow a local attacker to obtain sensitive information due to insufficient session expiration. IBM X-Force ID: 234179.

5.5CVSS4.4AI score0.00022EPSS

CVE•added 2013/12/14 10:55 p.m.•27 views

CVE-2013-4000

Multiple cross-site request forgery (CSRF) vulnerabilities in IBM Cognos Command Center before 10.2 allow remote attackers to hijack the authentication of administrators for requests that (1) start or (2) stop services.

6.8CVSS7.3AI score0.00103EPSS