Ibm: >> Cognos Business Intelligence Server >> 10.1.1 Security Vulnerabilities
IBM Predictive Solutions Foundation (formerly PMQ) could allow a remote attacker to include arbitrary files. A remote attacker could send a specially-crafted URL to specify a file from the local system, which could allow the attacker to obtain sensitive information. IBM X-Force ID: 119618.
CVSS Score
5.3
EPSS Score
0.002
Published
2017-06-07
IBM Cognos Analytics 10.1 and 10.2 could allow a local user to craft a URL which could confirm the existence of and expose postial contents of a file. IBM X-Force ID: 121340.
CVSS Score
3.3
EPSS Score
0.001
Published
2017-06-07