Design/Logic Flaw

2013-03-0505:02:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

46.8%

JSON

IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 allows remote authenticated users to conduct XPath injection attacks, and read arbitrary XML files, via unspecified vectors.

CPENameOperatorVersion
cognos_business_intelligenceeq10.2
cognos_business_intelligenceeq10.1.1
cognos_business_intelligenceeq10.1
cognos_business_intelligenceeq8.4.1