IBM Planning Analytics 2.0 and IBM Cognos Analytics 11.2.1, 11.2.0, and 11.1.7 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 214349.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2022-06-24T15:35:26.010998Z
Updated: 2024-09-16T16:22:59.856Z
Reserved: 2021-08-16T00:00:00
Link: CVE-2021-39047
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-06-24T16:15:08.297
Modified: 2022-10-28T22:44:43.670
Link: CVE-2021-39047
Redhat
No data.