) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
Search Parameters:
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:ibm:cognos_analytics:11.1.7:fixpack4:*:*:*:*:*:*
- CPE Name Search: true
There are 22 matching records.
Displaying matches 21 through 22.
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2020-4388 |
IBM Cognos Analytics 11.0 and 11.1 could be vulnerable to a denial of service attack by failing to catch exceptions in a servlet also exposing debug information could also be used in future attacks. IBM X-Force ID: 179270. Published: October 12, 2020; 10:15:12 AM -0400 |
V3.1: 8.2 HIGH V2.0: 6.4 MEDIUM |
| CVE-2020-4302 |
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to execute arbitrary code on the system, caused by a CSV injection. By persuading a victim to open a specially-crafted excel file, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 176610. Published: October 12, 2020; 10:15:12 AM -0400 |
V3.1: 7.8 HIGH V2.0: 9.3 HIGH |