Headline
CVE-2021-39047: IBM Planning Analytics and IBM Cognos Analytics cross-site scripting CVE-2021-39047 Vulnerability Report
IBM Planning Analytics 2.0 and IBM Cognos Analytics 11.2.1, 11.2.0, and 11.1.7 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 214349.
{{’LEARN_MORE_LABEL’ | translate}}
{{’LABEL_REQUEST_ACCESS’ | translate}} {{’LEARN_MORE_LABEL’ | translate}}
Related news
CVE-2021-29768: Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilities
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could allow a low level user to obtain sensitive information from the details of the 'Cloud Storage' page for which they should not have access. IBM X-Force ID: 202682.