CVE-2017-1125

Summary

IBM Cognos Analytics 10.1 and 10.2 could allow a local user to craft a URL which could confirm the existence of and expose postial contents of a file. IBM X-Force ID: 121340.

Affected Software

VendorProductVersion RangeStatus
IBMCognos Business Intelligence10.1.1affected
IBMCognos Business Intelligence10.2affected
IBMCognos Business Intelligence10.2.1affected
IBMCognos Business Intelligence10.2.1.1affected
IBMCognos Business Intelligence10.2.2affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

References