PT-2025-7415 · Ibm · Ibm Controller+1

Published

2025-02-18

Updated

2025-02-19

CVE-2024-45081

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions IBM Cognos Controller versions 11.0.0 through 11.0.1 FP3 IBM Controller version 11.1.0

Description The issue allows an authenticated user to modify restricted content due to incorrect authorization checks.

Recommendations For IBM Cognos Controller versions 11.0.0 through 11.0.1 FP3, update to a version that includes the fix for this issue. For IBM Controller version 11.1.0, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to sensitive content until a patch is available.

Fix

Incorrect Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-863

Related Identifiers

BDU:2025-02078

CVE-2024-45081

Affected Products

Ibm Cognos Controller

Ibm Controller

PT-2025-7415 · Ibm · Ibm Controller+1

CVE-2024-45081

Weakness Enumeration

Related Identifiers

Affected Products

References · 6