Vulnerabilities > CVE-2023-38724 - Unspecified vulnerability in IBM Cognos Controller 10.4.1/10.4.2/11.0.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
IBM Cognos Controller 10.4.1, 10.4.2, and 11.0.0 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 262183.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |