Skip to main content

Cognos Dashboards On Cloud Pak For Data

4 CVEs product

Monthly

CVE-2024-41739 HIGH This Month

IBM Cognos Dashboards 4.0.7 and 5.0.0 on Cloud Pak for Data could allow a remote attacker to perform unauthorized actions due to dependency confusion. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass IBM Cognos Dashboards On Cloud Pak For Data
NVD
CVSS 3.1
8.8
EPSS
0.3%
CVE-2023-38735 MEDIUM PATCH This Month

IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 could allow a remote attacker to bypass security restrictions, caused by a reverse tabnabbing flaw. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass IBM Cognos Dashboards On Cloud Pak For Data
NVD
CVSS 3.1
6.5
EPSS
0.5%
CVE-2023-38276 HIGH PATCH This Week

IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive information in environment variables which could aid in further attacks against the system. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure IBM Cognos Dashboards On Cloud Pak For Data
NVD
CVSS 3.1
7.5
EPSS
0.4%
CVE-2023-38275 HIGH PATCH This Week

IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive information in container images which could lead to further attacks against the system. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure IBM Cognos Dashboards On Cloud Pak For Data
NVD
CVSS 3.1
7.5
EPSS
0.4%
EPSS 0% CVSS 8.8
HIGH This Month

IBM Cognos Dashboards 4.0.7 and 5.0.0 on Cloud Pak for Data could allow a remote attacker to perform unauthorized actions due to dependency confusion. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass IBM Cognos Dashboards On Cloud Pak For Data
NVD
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 could allow a remote attacker to bypass security restrictions, caused by a reverse tabnabbing flaw. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass IBM Cognos Dashboards On Cloud Pak For Data
NVD
EPSS 0% CVSS 7.5
HIGH PATCH This Week

IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive information in environment variables which could aid in further attacks against the system. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure IBM Cognos Dashboards On Cloud Pak For Data
NVD
EPSS 0% CVSS 7.5
HIGH PATCH This Week

IBM Cognos Dashboards on Cloud Pak for Data 4.7.0 exposes sensitive information in container images which could lead to further attacks against the system. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure IBM Cognos Dashboards On Cloud Pak For Data
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy