XSS Vulnerability in IBM Cognos Business Intelligence Software
CVE-2012-4835

Currently unrated

Key Information:

Vendor: IBM
Status: Cognos Business Intelligence
Vendor: CVE Published:; 5 March 2013

What is CVE-2012-4835?

An XSS vulnerability exists in IBM Cognos Business Intelligence versions prior to specified updates. This flaw allows remote attackers to exploit the software by injecting malicious web scripts or HTML into the application, potentially compromising user data and disrupting normal operations. It is critical for users of affected versions to apply the necessary patches and updates to mitigate this security risk.

References

http://www-01.ibm.com/support/docview.wss?uid=swg24034373

x_refsource_CONFIRM

http://www-01.ibm.com/support/docview.wss?uid=swg21626697

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/78917

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 5, 2013
Vulnerability Reserved
Sep 6, 2012