First published: Mon Jun 17 2019(Updated: )
IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 158882.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Cognos Controller | =10.2.0 | |
IBM Cognos Controller | =10.2.1 | |
IBM Cognos Controller | =10.3.0 | |
IBM Cognos Controller | =10.3.1 | |
IBM Cognos Controller | =10.4.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-4177 is a vulnerability in IBM Cognos Controller versions 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 that allows web pages to be stored locally and read by another user on the system.
The severity of CVE-2019-4177 is medium with a CVSS severity score of 3.3.
CVE-2019-4177 affects IBM Cognos Controller versions 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 by allowing web pages to be stored locally and read by another user on the system.
To fix CVE-2019-4177, users should apply the recommended patches or updates provided by IBM.
You can find more information about CVE-2019-4177 on the official IBM support website at http://www.ibm.com/support/docview.wss?uid=ibm10886913