CVE-2023-35011
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Published Aug 16, 2023
Updated: Jun 21, 2024
CWE ID 918
Summary
CVE-2023-35011 is a serious vulnerability affecting IBM Cognos Analytics versions 11.1.7, 11.2.0, and 11.2.1. This issue involves server-side request forgery (SSRF), which allows authenticated attackers to send unauthorized requests from the system. The potential consequences of exploiting this vulnerability include network enumeration and facilitation of other attacks. IBM X-Force has assigned ID 257705 to this issue.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- IBM Cognos Analytics
Affected Vendors
- IBM Corporation