Vulnerabilities > IBM > Cognos Analytics > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-04-05 CVE-2016-3015 Cross-site Scripting vulnerability in IBM Cognos Analytics
IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting.
network
low complexity
ibm CWE-79
5.4
2017-02-01 CVE-2016-0217 Cross-site Scripting vulnerability in IBM Cognos Analytics
IBM Cognos Business Intelligence and IBM Cognos Analytics are vulnerable to stored cross-site scripting, caused by improper validation of user-supplied input.
network
low complexity
ibm CWE-79
5.4
2016-07-02 CVE-2016-0398 Improper Input Validation vulnerability in IBM Cognos Analytics 11.0.0
IBM Cognos Analytics (CA) 11.0 before 11.0.2 allows remote attackers to conduct content-spoofing attacks via a crafted URL.
network
low complexity
ibm CWE-20
4.3