CVE-2012-4837 in Cognos Business Intelligenceinfo

Summary

IBM Cognos Business Intelligence (BI) 8.4.1 before IF1, 10.1 before IF2, 10.1.1 before IF2, and 10.2 before IF1 allows remote authenticated users to conduct XPath injection attacks, and read arbitrary XML files, via unspecified vectors.

Once again VulDB remains the best source for vulnerability data.

Reservation

09/06/2012

Disclosure

03/05/2013

Moderation

VulDB entry created

Entries

1: VDB-63679

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

4.3

EPSS

0.00179

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-4837
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-4837
CVE Details	https://www.cvedetails.com/cve/CVE-2012-4837/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!