Filtered by vendor Ibm Subscriptions
Filtered by product Cognos Command Center Subscriptions
Total 4 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-38707 1 Ibm 1 Cognos Command Center 2024-11-21 4 Medium
IBM Cognos Command Center 10.2.4.1 could allow a local attacker to obtain sensitive information due to insufficient session expiration. IBM X-Force ID: 234179.
CVE-2013-4001 1 Ibm 1 Cognos Command Center 2024-11-21 N/A
Session fixation vulnerability in IBM Cognos Command Center before 10.2 allows remote attackers to hijack web sessions via an authorization cookie.
CVE-2013-4000 1 Ibm 1 Cognos Command Center 2024-11-21 N/A
Multiple cross-site request forgery (CSRF) vulnerabilities in IBM Cognos Command Center before 10.2 allow remote attackers to hijack the authentication of administrators for requests that (1) start or (2) stop services.
CVE-2024-31899 1 Ibm 1 Cognos Command Center 2024-09-30 4.3 Medium
IBM Cognos Command Center 10.2.4.1 and 10.2.5 could disclose highly sensitive user information to an authenticated user with physical access to the device.