返回 CVE 浏览器

CVE-2018-1934

HIGH

8.8

CVSS Severity Score

EPSS Score0.0820%

EPSS Percentile14.95th

Published2019年12月20日

Last Modified2024年11月21日

Vulnerability Description

IBM Cognos Business Intelligence 10.2.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 153179.

Affected Platforms (CPE)

📦

Ibm

Cognos Business Intelligence

= 10.2.2

References & Advisories

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/153179

🔗 https://www.ibm.com/support/pages/node/1142626

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/153179

🔗 https://www.ibm.com/support/pages/node/1142626

相关漏洞威胁

CVE-2010-149010.0

Unspecified vulnerability in IBM Cognos 8 Business Intelligence before 8.4.1 FP1 has unknown impact and attack vectors.

CVE-2012-48589.3

IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 does not properly ...

CVE-2016-89608.8

IBM Cognos Business Intelligence 10.2 could allow a user with lower privilege Capabilities to adopt the Capabilities of a higher-p...

CVE-2017-17647.0

IBM Cognos Business Intelligence 10.2, 10.2.1, 10.2.1.1, and 10.2.2, under specialized circumstances, could expose plain text cred...