Vulnerabilities > IBM > Cognos Analytics > 11.1.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-20 | CVE-2019-4555 | Cross-site Scripting vulnerability in IBM Cognos Analytics IBM Cognos Analytics 11.0 and 11.0 is vulnerable to cross-site scripting. | 3.5 |
| 2019-12-20 | CVE-2019-4231 | Cross-Site Request Forgery (CSRF) vulnerability in multiple products IBM Cognos Analytics 11.0 and 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. | 4.3 |