CVE-2024-41776

Name of the Vulnerable Software and Affected Versions IBM Cognos Controller versions 11.0.0 through 11.0.1

Description The issue is related to cross-site request forgery, which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.

Recommendations For versions 11.0.0 through 11.0.1, update to a version that includes a fix for this issue to prevent cross-site request forgery attacks. As a temporary workaround, consider implementing additional security measures to verify the authenticity of requests and prevent unauthorized actions.