CyberSec.Space Logo
Back to CVE Browser

CVE-2018-1934

HIGH
8.8
CVSS Severity Score
EPSS Score0.0820%
EPSS Percentile14.95th
PublishedDec 20, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

IBM Cognos Business Intelligence 10.2.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 153179.

Affected Platforms (CPE)

πŸ“¦
Ibm

Cognos Business Intelligence

= 10.2.2

References & Advisories

πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/153179
πŸ”— https://www.ibm.com/support/pages/node/1142626
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/153179
πŸ”— https://www.ibm.com/support/pages/node/1142626

Related Vulnerabilities

CVE-2010-149010.0

Unspecified vulnerability in IBM Cognos 8 Business Intelligence before 8.4.1 FP1 has unknown impact and attack vectors.

CVE-2012-48589.3

IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 does not properly ...

CVE-2016-89608.8

IBM Cognos Business Intelligence 10.2 could allow a user with lower privilege Capabilities to adopt the Capabilities of a higher-p...

CVE-2017-17647.0

IBM Cognos Business Intelligence 10.2, 10.2.1, 10.2.1.1, and 10.2.2, under specialized circumstances, could expose plain text cred...