Controller Security Vulnerabilities and Issues — Controller CVE List

Lucene search

IbmController

3 matches found

CVE•added 2025/03/26 2:15 p.m.•73 views

CVE-2022-39163

IBM Cognos Controller 11.0.0 through 11.1.0 is vulnerable to a Client-Side Desync (CSD) attack where an attacker could exploit a desynchronized browser connection that could lead to further cross-site scripting (XSS) attacks.

4.7CVSS5.8AI score0.00035EPSS

CVE•added 2025/01/07 4:15 p.m.•40 views

CVE-2022-22363

IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.

4.3CVSS6.2AI score0.0004EPSS

CVE•added 2025/01/07 4:15 p.m.•39 views

CVE-2024-25037

IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 could allow a remote attacker to obtain sensitive information when a stack trace is returned in the browser.

4.3CVSS6.3AI score0.0004EPSS