Cognos Controller Security Vulnerabilities and Issues — Cognos Controller CVE List

Lucene search

IbmCognos Controller

6 matches found

CVE•added 2019/09/17 7:15 p.m.•70 views

CVE-2019-4175

IBM Cognos Controller 10.3.0, 10.3.1, 10.4.0, and 10.4.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 158880.

7.5CVSS7.2AI score0.00112EPSS

CVE•added 2024/12/03 6:15 p.m.•58 views

CVE-2024-41775

IBM Cognos Controller 11.0.0 and 11.0.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

7.5CVSS5.6AI score0.00025EPSS

CVE•added 2024/12/03 6:15 p.m.•53 views

CVE-2024-41777

IBM Cognos Controller 11.0.0 and 11.0.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.

7.5CVSS7.6AI score0.00058EPSS

CVE•added 2024/05/03 6:15 p.m.•45 views

CVE-2023-40696

IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 264939.

7.5CVSS6.2AI score0.00034EPSS

CVE•added 2024/05/03 5:15 p.m.•42 views

CVE-2020-4874

IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 190837.

7.5CVSS6.2AI score0.00038EPSS

CVE•added 2024/05/03 7:15 p.m.•40 views

CVE-2021-20451

IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 196643.

7.2CVSS7.2AI score0.00053EPSS