Lucene search
China National Vulnerability DatabaseCNVD-2022-91130HistoryDec 21, 2022 - 12:00 a.m.
IBM Cognos Analytics Log Injection Vulnerability
2022-12-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
2
ibm cognos analytics
business intelligence
log injection
vulnerability
arbitrary requests
internal network
local file system
security issue
0.001 Low
EPSS
Percentile
25.8%
IBM Cognos Analytics is a suite of business intelligence software from IBM Corporation in the United States. IBM Cognos Analytics versions 11.1.7, 11.2.0 and 11.2.1 are vulnerable to log injection. An attacker could use the vulnerability to issue arbitrary requests to the internal network or local file system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm ibm cognos analytics | eq | 11.1.7 | |
| ibm ibm cognos analytics | eq | 11.2.0 | |
| ibm ibm cognos analytics | eq | 11.2.1 |
Related
nvd
nvd
CVE-2022-43883
2022-12-19 21:15:10
cvelist
cvelist
CVE-2022-43883 IBM Cognos Analytics data manipulation
2022-12-19 20:47:46
prion
prion
Design/Logic Flaw
2022-12-19 21:15:00
cve
cve
CVE-2022-43883
2022-12-19 21:15:10
nessus
nessus
IBM Cognos Analytics Multiple Vulnerabilities (6841801)
2023-01-05 00:00:00
