← volver
CVE-2024-40702

IBM Cognos Controller improper certificate validation

CVSS 8.2 HIGHEPSS 0.3%CWE-295
IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 could allow an unauthorized user to obtain valid tokens to gain access to protected resources due to improper certificate validation.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Productos afectados
IBM · Cognos ControllerIBM · Controller

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.ibm.com/support/pages/node/7179163