CVE-2024-45081

Summary

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0

could allow an authenticated user to modify restricted content due to incorrect authorization checks.

Affected Software

VendorProductVersion RangeStatus
IBMCognos Controller11.0.0 <= 11.0.1affected
IBMController11.1.0affected

Weaknesses

  • CWE-863: CWE-863 Incorrect Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References