CVE-2024-25035

Summary

IBM Cognos Controller 11.0.0 and 11.0.1

exposes server details that could allow an attacker to obtain information of the application environment to conduct further attacks.

Affected Software

VendorProductVersion RangeStatus
IBMCognos Controller11.0.0, 11.0.1affected

Weaknesses

  • CWE-497: CWE-497 Exposure of System Data to an Unauthorized Control Sphere

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References