CVE-2019-4176

Summary

IBM Cognos Controller 10.2.0, 10.2.1, 10.3.0, 10.3.1, and 10.4.0 could allow a remote attacker to bypass security restrictions, caused by an error related to insecure HTTP Methods. An attacker could exploit this vulnerability to gain access to the system. IBM X-Force ID: 158881.

Affected Software

VendorProductVersion RangeStatus
IBMCognos Controller10.2.1affected
IBMCognos Controller10.2.0affected
IBMCognos Controller10.3.1affected
IBMCognos Controller10.3.0affected
IBMCognos Controller10.4.0affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References