Cognos Controller Vulnerable to SQL Injection
CVE-2023-38724
Currently unrated 🤨
Summary
IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 262183.
Timeline
Vulnerability published.
Collectors
NVD Database