Latest high severity vulnerabilities for "ibm cognos analytics" 11.2.0-11.2.4 fp3

IBM Cognos AnalyticsSSRF

high

8.1

First published (updated )

CVE-2024-29415

IBM Cognos AnalyticsNode.js could allow a local attacker to gain elevated privileges on the system, caused by the failur…

high

7.3

First published (updated )

CVE-2024-22017

IBM Cognos AnalyticsPath Traversal

high

7.9

EPSS

0.04%

First published (updated )

CVE-2024-21891

IBM Cognos AnalyticsPath Traversal

high

7.9

EPSS

0.04%

First published (updated )

CVE-2024-21896

redhat/nodeNode.js could allow a local authenticated attacker to gain elevated privileges on the system, caused…

high

7.5

EPSS

0.04%

First published (updated )

CVE-2024-21892

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

IBM Cognos AnalyticsNode.js is vulnerable to a denial of service, caused by an error when reading unprocessed HTTP reque…

high

7.5

EPSS

0.04%

First published (updated )

CVE-2024-22019

IBM Cognos AnalyticsNode.js versions which bundle an unpatched version of OpenSSL or run against a dynamically linked ve…

high

7.4

First published (updated )

CVE-2023-46809

IBM Cognos AnalyticsIn Connect2id Nimbus JOSE+JWT before 9.37.2, an attacker can cause a denial of service (resource con…

high

7.5

First published (updated )

CVE-2023-52428

Apache ShiroApache Shiro: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Shiro.

high

7.4

First published (updated )

CVE-2023-46750

Fedoraproject FedoraNode.js could allow a remote attacker to bypass security restrictions, caused by the circumvention o…

high

7.5

First published (updated )

CVE-2023-38552

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

IBM Cognos AnalyticsPath Traversal, Input Validation

high

7.7

First published (updated )

CVE-2023-39331

IBM Cognos AnalyticsIncorrect cipher key & IV length processing

high

7.5

EPSS

0.11%

First published (updated )

CVE-2023-5363

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

high

7.5

Exploited

Zeroday

First published (updated )

CVE-2023-44487

IBM Cognos AnalyticsIBM WebSphere Application Server Liberty denial of service

high

7.5

First published (updated )

CVE-2023-38737

ubuntu/bashBuffer Overflow

high

7.8

First published (updated )

CVE-2022-3715

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Fedoraproject FedoraInefficient Regular Expression Complexity in moment

high

7.5

First published (updated )

CVE-2022-31129

Eclipse JettyRace Condition

high

7

First published (updated )

CVE-2020-27216

Eclipse JettyIn Eclipse Jetty version 9.3.x and 9.4.x, the server is vulnerable to Denial of Service conditions i…

high

7.5

First published (updated )

CVE-2018-12545

Google AndroidIn the xmlSnprintfElementContent function of valid.c, there is a possible out of bounds write. This …

high

8.8

First published (updated )

CVE-2018-9466

IBM Cognos AnalyticsEclipse Jetty could allow a remote attacker to hijack a user's session, caused by a flaw in the File…

high

8.8

First published (updated )

CVE-2018-12538

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

IBM Cognos AnalyticsSSRF

IBM Cognos AnalyticsNode.js could allow a local attacker to gain elevated privileges on the system, caused by the failur…

IBM Cognos AnalyticsPath Traversal

IBM Cognos AnalyticsPath Traversal

redhat/nodeNode.js could allow a local authenticated attacker to gain elevated privileges on the system, caused…

Never miss a vulnerability like this again

IBM Cognos AnalyticsNode.js is vulnerable to a denial of service, caused by an error when reading unprocessed HTTP reque…

IBM Cognos AnalyticsNode.js versions which bundle an unpatched version of OpenSSL or run against a dynamically linked ve…

IBM Cognos AnalyticsIn Connect2id Nimbus JOSE+JWT before 9.37.2, an attacker can cause a denial of service (resource con…

Apache ShiroApache Shiro: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Shiro.

Fedoraproject FedoraNode.js could allow a remote attacker to bypass security restrictions, caused by the circumvention o…

Never miss a vulnerability like this again

IBM Cognos AnalyticsPath Traversal, Input Validation

IBM Cognos AnalyticsIncorrect cipher key & IV length processing

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

IBM Cognos AnalyticsIBM WebSphere Application Server Liberty denial of service

ubuntu/bashBuffer Overflow

Never miss a vulnerability like this again

Fedoraproject FedoraInefficient Regular Expression Complexity in moment

Eclipse JettyRace Condition

Eclipse JettyIn Eclipse Jetty version 9.3.x and 9.4.x, the server is vulnerable to Denial of Service conditions i…

Google AndroidIn the xmlSnprintfElementContent function of valid.c, there is a possible out of bounds write. This …

IBM Cognos AnalyticsEclipse Jetty could allow a remote attacker to hijack a user's session, caused by a flaw in the File…

Never miss a vulnerability like this again

Company

Resources

Contact