Vulnerabilities > CVE-2024-45676 - Insufficient Type Distinction vulnerability in IBM Cognos Controller 11.0.0/11.0.1

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
LOW
Availability impact
NONE
network
low complexity
ibm
CWE-351
NVD
Published: 2024-12-03
Updated: 2024-12-11

Summary

IBM Cognos Controller 11.0.0 and 11.0.1 could allow an authenticated user to upload insecure files, due to insufficient file type distinction.

Vulnerable Configurations

Part Description Count
Application
Ibm
2

Common Weakness Enumeration (CWE)

References