Tivoli Common Reporting@3.1.0.2 Security Vulnerabilities and Issues — Tivoli Common Reporting@3.1.0.2 CVE List

Lucene search

IbmTivoli Common Reporting3.1.0.2

4 matches found

CVE•added 2016/01/02 9:59 p.m.•1063 views

CVE-2015-7450

Serialized-object interfaces in certain IBM analytics, business solutions, cognitive, IT infrastructure, and mobile and social products allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the InvokerTransformer class in the Apache Commons Collection...

10CVSS9.7AI score0.93939EPSS

CVE•added 2016/01/02 9:59 p.m.•36 views

CVE-2015-7435

IBM Tivoli Common Reporting (TCR) 2.1 before IF14, 2.1.1 before IF22, 2.1.1.2 before IF9, 3.1.0.0 through 3.1.2 as used in Cognos Business Intelligence before 10.2 IF16, and 3.1.2.1 as used in Cognos Business Intelligence before 10.2.1.1 IF12 allows local users to bypass the Cognos Application Fire...

2.5CVSS5.5AI score0.00046EPSS

CVE•added 2015/10/04 2:59 a.m.•35 views

CVE-2015-1969

Cross-site scripting (XSS) vulnerability in IBM Tivoli Common Reporting (TCR) 2.1 before IF13 and 2.1.1 before IF21, and TCR 3.1.x as used in Cognos Business Intelligence before 10.2 IF0015 and other products, allows remote authenticated users to inject arbitrary web script or HTML via a crafted UR...

3.5CVSS6.2AI score0.00227EPSS

CVE•added 2016/01/02 9:59 p.m.•33 views

CVE-2015-7436

IBM Tivoli Common Reporting (TCR) 2.1 before IF14, 2.1.1 before IF22, 2.1.1.2 before IF9, 3.1.0.0 through 3.1.2 as used in Cognos Business Intelligence before 10.2 IF16, and 3.1.2.1 as used in Cognos Business Intelligence before 10.2.1.1 IF12 preserves user permissions across group-add and group-re...

2.5CVSS5.4AI score0.00035EPSS