Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-30996

IBM Cognos Analytics 11.1.7, 11.2.4, and 12.0.0 could be vulnerable to information leakage due to unverified sources in messages sent between Windows objects of different origins. IBM X-Force ID: 254290.

Published

2024-02-26T16:27:46.017

Last Modified

2024-12-17T19:32:35.977

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 5.3 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-346
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application netapp oncommand_insight - Yes
Application ibm cognos_analytics < 11.1.7 Yes
Application ibm cognos_analytics < 11.2.4 Yes
Application ibm cognos_analytics 11.1.7 Yes
Application ibm cognos_analytics 11.1.7 Yes
Application ibm cognos_analytics 11.1.7 Yes
Application ibm cognos_analytics 11.1.7 Yes
Application ibm cognos_analytics 11.1.7 Yes
Application ibm cognos_analytics 11.1.7 Yes
Application ibm cognos_analytics 11.1.7 Yes
Application ibm cognos_analytics 11.1.7 Yes
Application ibm cognos_analytics 11.2.4 Yes
Application ibm cognos_analytics 11.2.4 Yes
Application ibm cognos_analytics 11.2.4 Yes
Application ibm cognos_analytics 12.0.0 Yes
Application ibm cognos_analytics 12.0.1 Yes
References