Cognos Controller Security Vulnerabilities and Issues — Cognos Controller CVE List

Lucene search

IbmCognos Controller

5 matches found

CVE•added 2025/01/07 4:15 p.m.•67 views

CVE-2024-28778

IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 is vulnerable to exposure of Artifactory API keys. This vulnerability allows users to publish code to private packages or repositories under the name of the organization.

6.5CVSS6.8AI score0.00039EPSS

CVE•added 2024/12/03 6:15 p.m.•58 views

CVE-2024-41776

IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.

6.5CVSS6.5AI score0.0002EPSS

CVE•added 2019/06/17 3:15 p.m.•46 views

CVE-2019-4173

IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 could allow a remote attacker to obtain sensitive information, caused by a flaw in the HTTP OPTIONS method, aka Optionsbleed. By sending an OPTIONS HTTP request, a remote attacker could exploit this vulnerability to read secret data f...

6.5CVSS6.6AI score0.00308EPSS

CVE•added 2025/05/27 2:15 a.m.•40 views

CVE-2025-33079

IBM Controller 11.0.0, 11.0.1, and 11.1.0 application could allow an authenticated user to obtain sensitive credentials that may be inadvertently included within the source code.

6.5CVSS6.3AI score0.00034EPSS

CVE•added 2025/02/19 4:15 p.m.•33 views

CVE-2024-45081

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 could allow an authenticated user to modify restricted content due to incorrect authorization checks.

6.5CVSS6.3AI score0.00031EPSS