CVE-2019-4366
First published: Thu Jul 30 2020(Updated: )
IBM Cognos Analytics 11.0 and 11.1 is susceptible to an information disclosure vulnerability where an attacker could gain access to cached browser data. IBM X-Force ID: 161748.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Cognos Analytics | =11.0.0 | |
| IBM Cognos Analytics | =11.1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this information disclosure vulnerability in IBM Cognos Analytics?
The vulnerability ID is CVE-2019-4366.
What is the severity of CVE-2019-4366?
CVE-2019-4366 has a severity rating of 5.3 (medium).
What is the affected software version range for CVE-2019-4366?
IBM Cognos Analytics versions 11.0.0 and 11.1.0 are affected by this vulnerability.
How can an attacker exploit this vulnerability in IBM Cognos Analytics?
An attacker can exploit this vulnerability to gain access to cached browser data in IBM Cognos Analytics.
Is there any additional information available about this vulnerability?
More information about this vulnerability can be found at the following references: [1] [2]
- agent/references
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/severity
- agent/author
- agent/description
- collector/ibm-support
- source/IBM
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/ibm
- canonical/ibm cognos analytics
- version/ibm cognos analytics/11.0.0
- version/ibm cognos analytics/11.1.0