CVE-2024-41777

Name of the Vulnerable Software and Affected Versions IBM Cognos Controller versions 11.0.0 through 11.0.1

Description The issue concerns hard-coded credentials, such as a password or cryptographic key, used by IBM Cognos Controller for inbound authentication, outbound communication to external components, or encryption of internal data.

Recommendations For versions 11.0.0 and 11.0.1, consider removing or securely storing the hard-coded credentials to prevent unauthorized access. As a temporary workaround, restrict access to the affected components until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.