Vulnerability Details CVE-2021-29745
IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to priviledge escalation where a lower evel user could have access to the 'New Job' page to which they should not have access to. IBM X-Force ID: 201695.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.3%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 6.5
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/201695
- https://security.netapp.com/advisory/ntap-20211112-0005/
- https://www.ibm.com/support/pages/node/6491661
- https://exchange.xforce.ibmcloud.com/vulnerabilities/201695
- https://security.netapp.com/advisory/ntap-20211112-0005/
- https://www.ibm.com/support/pages/node/6491661
Products affected by CVE-2021-29745
-
cpe:2.3:a:ibm:cognos_analytics:11.1.7
-
cpe:2.3:a:ibm:cognos_analytics:11.2.0
-
cpe:2.3:a:netapp:oncommand_insight:-