CVE-2024-25036

Summary

IBM Cognos Controller 11.0.0 and 11.0.1

could allow an authenticated user with local access to bypass security allowing users to circumvent restrictions imposed on input fields.

Affected Software

VendorProductVersion RangeStatus
IBMCognos Controller11.0.0, 11.0.1affected

Weaknesses

  • CWE-288: CWE-288 Authentication Bypass Using an Alternate Path or Channel

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References