CVE-2024-25041
CVSS V2 None
CVSS V3 None
Description
IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, and 12.0.2 is potentially vulnerable to cross site scripting (XSS). A remote attacker could execute malicious commands due to improper validation of column headings in Cognos Assistant. IBM X-Force ID: 282780.
Overview
- CVE ID
- CVE-2024-25041
- Assigner
- ibm
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-06-28T18:55:55.233Z
- Last Modified Date
- 2024-06-28T20:07:03.127Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://www.ibm.com/support/pages/node/7156941 | vendor-advisory |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/282780 | vdb-entry |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-25041 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-25041 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-29 13:09:12 | Added to TrackCVE |