IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 is vulnerable to exposure of Artifactory API keys. This vulnerability allows users to publish code to private packages or repositories under the name of the organization.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.ibm.com/support/pages/node/7179163 |
History
Tue, 07 Jan 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 07 Jan 2025 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 is vulnerable to exposure of Artifactory API keys. This vulnerability allows users to publish code to private packages or repositories under the name of the organization. | |
Title | IBM Cognos Controller information disclosure | |
First Time appeared |
Ibm
Ibm cognos Controller Ibm controller |
|
Weaknesses | CWE-798 | |
CPEs | cpe:2.3:a:ibm:cognos_controller:11.0.0:*:*:*:*:*:*:* cpe:2.3:a:ibm:cognos_controller:11.0.1:*:*:*:*:*:*:* cpe:2.3:a:ibm:controller:11.1.0:*:*:*:*:*:*:* |
|
Vendors & Products |
Ibm
Ibm cognos Controller Ibm controller |
|
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2025-01-07T15:57:13.969Z
Updated: 2025-01-07T16:47:18.576Z
Reserved: 2024-03-10T12:23:11.490Z
Link: CVE-2024-28778
Vulnrichment
Updated: 2025-01-07T16:47:13.029Z
NVD
Status : Received
Published: 2025-01-07T16:15:33.113
Modified: 2025-01-07T16:15:33.113
Link: CVE-2024-28778
Redhat
No data.