CVE-2024-40703 | IBM Cognos Analytics/Cognos Analytics Reports API Key insufficiently protected credentials

Inserito da Angelo Barbosa | Set 22, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in IBM Cognos Analytics and Cognos Analytics Reports. Affected by this issue is some unknown functionality of the component API Key Handler. The manipulation leads to insufficiently protected credentials.

This vulnerability is handled as CVE-2024-40703. It is possible to launch the attack on the local host. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-40703 | IBM Cognos Analytics/Cognos Analytics Reports API Key insufficiently protected credentials

Post correlati

CVE-2024-41173 | Beckhoff IPC Diagnostics Package/TwinCAT BSD authentication bypass (VDE-2024-045)

CVE-2024-5957 | Trellix Intrusion Prevention System Manager 11.1.7.97 API authentication bypass

CVE-2024-22590 | Kwik 745fd4e2 TLS Engine state issue

CVE-2024-24397 | Stimulsoft Dashboard.JS prior 2024.1.2 ReportName cross site scripting