CVE-2016-0218

Name of the Vulnerable Software and Affected Versions IBM Cognos Business Intelligence and IBM Cognos Analytics (affected versions not specified)

Description The issue is caused by improper validation of user-supplied input, allowing for cross-site scripting. A remote attacker could exploit this using a specially-crafted URL to execute script in a victim's Web browser, potentially stealing the victim's cookie-based authentication credentials.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.