IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 233571.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2022-08-31T00:00:00
Updated: 2024-08-03T10:14:28.369Z
Reserved: 2022-07-26T00:00:00
Link: CVE-2022-36773
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-09-01T19:15:12.587
Modified: 2022-11-03T19:04:35.090
Link: CVE-2022-36773
Redhat
No data.