IBM Cognos Analytics 11.2.0 through 11.2.4 and 12.0.0...
Moderate severity
Unreviewed
Published
Dec 18, 2024
to the GitHub Advisory Database
•
Updated Dec 18, 2024
Description
Published by the National Vulnerability Database
Dec 18, 2024
Published to the GitHub Advisory Database
Dec 18, 2024
Last updated
Dec 18, 2024
IBM Cognos Analytics 11.2.0 through 11.2.4 and 12.0.0 through 12.0.3
is potentially vulnerable to Cross Site Scripting (XSS). A remote attacker could execute malicious commands due to improper validation of column headings in Cognos Explorations.
References