CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-56340

IBM Cognos Analytics 11.2.0 through 11.2.4 FP5 is vulnerable to local file inclusion vulnerability, allowing an attacker to access sensitive files by inserting path traversal payloads inside the deficon parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.6%

CVSS Severity

CVSS v3 Score 6.5

References

https://www.ibm.com/support/pages/node/7183676

Products affected by CVE-2024-56340

Ibm » Cognos Analytics » Version: 11.2.0

cpe:2.3:a:ibm:cognos_analytics:11.2.0
Ibm » Cognos Analytics » Version: 11.2.1

cpe:2.3:a:ibm:cognos_analytics:11.2.1
Ibm » Cognos Analytics » Version: 11.2.2

cpe:2.3:a:ibm:cognos_analytics:11.2.2
Ibm » Cognos Analytics » Version: 11.2.3

cpe:2.3:a:ibm:cognos_analytics:11.2.3
Ibm » Cognos Analytics » Version: 11.2.4

cpe:2.3:a:ibm:cognos_analytics:11.2.4
Ibm » Cognos Analytics » Version: 12.0.0

cpe:2.3:a:ibm:cognos_analytics:12.0.0
Ibm » Cognos Analytics » Version: 12.0.1

cpe:2.3:a:ibm:cognos_analytics:12.0.1
Ibm » Cognos Analytics » Version: 12.0.2

cpe:2.3:a:ibm:cognos_analytics:12.0.2
Ibm » Cognos Analytics » Version: 12.0.3

cpe:2.3:a:ibm:cognos_analytics:12.0.3
Ibm » Cognos Analytics » Version: 12.0.4

cpe:2.3:a:ibm:cognos_analytics:12.0.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-56340

Products

Pricing

Contact Us