Description

IBM Cognos Analytics 11.2.0 through 11.2.4 FP4 and 12.0.0 through 12.0.4 is vulnerable to an Expression Language (EL) Injection vulnerability. A remote attacker could exploit this vulnerability to expose sensitive information, consume memory resources, and/or cause the server to crash when using a specially crafted EL statement.

INFO

Published Date :

2024-12-20T13:38:55.895Z

Last Modified :

2024-12-20T15:43:29.891Z

Source :

ibm
AFFECTED PRODUCTS

The following products are affected by CVE-2024-51466 vulnerability.

Vendors Products
Ibm
  • Cognos Analytics
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-51466.

URL Resource
https://www.ibm.com/support/pages/node/7179496 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact