PT-2021-18526 · Ibm · Ibm Cognos Analytics

Published

2021-12-03

Updated

2022-07-12

CVE-2021-29867

CVSS v2.0

5.5

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions IBM Cognos Analytics versions 11.1.7 through 11.2.0

Description The issue allows an authenticated user to view or edit a Jupyter notebook that they should not have access to.

Recommendations For IBM Cognos Analytics versions 11.1.7 through 11.2.0, consider restricting access to Jupyter notebooks to minimize the risk of unauthorized viewing or editing until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-29867

Affected Products

Ibm Cognos Analytics

PT-2021-18526 · Ibm · Ibm Cognos Analytics

CVE-2021-29867

Related Identifiers

Affected Products

References · 6