Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Cognos Controller cross-site request forgery
Vulnerability Description
IBM Cognos Controller 11.0.0 and 11.0.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
IBM Cognos Controller 跨站请求伪造漏洞
Vulnerability Description
IBM Cognos Controller是美国国际商业机器(IBM)公司的一套商业智能与计划解决方案。该产品具有流程自动化、财务审计控制、创建和管理财务报告等功能。 IBM Cognos Controller 11.0.1版本和11.0.0版本存在跨站请求伪造漏洞,该漏洞源于容易受到跨站请求伪造的攻击,从而允许攻击者执行从网站信任的用户传输的恶意和未经授权的操作。
CVSS Information
N/A
Vulnerability Type
N/A