Vulnerabilities > IBM > Planning Analytics > 2.0.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-18 | CVE-2019-4716 | Code Injection vulnerability in IBM Planning Analytics IBM Planning Analytics 2.0.0 through 2.0.8 is vulnerable to a configuration overwrite that allows an unauthenticated user to login as "admin", and then execute code as root or SYSTEM via TM1 scripting. | 9.8 |
| 2019-05-01 | CVE-2018-1933 | Cross-site Scripting vulnerability in IBM Planning Analytics IBM Planning Analytics 2.0 through 2.0.6 is vulnerable to cross-site scripting. | 3.5 |