Cross-Site Scripting Vulnerability in IBM Cognos Business Intelligence
CVE-2013-0586

Currently unrated

Key Information:

Vendor
IBM
Status
Cognos Business Intelligence
Vendor
CVE Published:
27 August 2013

Summary

A Cross-Site Scripting (XSS) vulnerability exists in the server side of IBM Cognos Business Intelligence versions 8.4.1, 10.1, 10.1.1, 10.2, and 10.2.1. This flaw enables remote authenticated users to inject arbitrary web scripts or HTML through unspecified vectors, potentially allowing malicious actions that compromise user data or system integrity. It is vital for organizations using these versions to implement security measures and updates to mitigate the risk associated with this vulnerability.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21645566
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/83380
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.