Cryptographic Flaw in IBM Cognos Analytics Mobile for Android
CVE-2021-39081

5.9MEDIUM

Key Information:

Vendor: IBM
Status: Cognos Analytics Mobile For Android
Vendor: CVE Published:; 19 December 2024

Summary

CVE-2021-39081 is a significant cryptographic vulnerability found in IBM Cognos Analytics Mobile for Android version 1.1.14. This vulnerability arises from the use of weaker than expected cryptographic algorithms, which could permit an attacker to decrypt sensitive information inadvertently. Organizations using this version of the application risk exposing critical data, making it imperative to evaluate and implement the necessary security measures to mitigate this threat.

Affected Version(s)

Cognos Analytics Mobile for Android 1.1.14

References

https://www.ibm.com/support/pages/node/6555140

vendor-advisory

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 19, 2024

Collectors

NVD DatabaseMitre Database