Description
The servlet gateway in IBM Cognos Business Intelligence 8.4.1 before IF3, 10.1.0 before IF4, 10.1.1 before IF4, 10.2.0 before IF4, 10.2.1 before IF2, and 10.2.1.1 before IF1 allows remote attackers to cause a denial of service (temporary gateway outage) via crafted HTTP requests.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/84592
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21652590
Scores
EPSS
0.0229
EPSS Percentile
81.2%
Details
CWE
CWE-20
Status
published
Products (6)
ibm/cognos_business_intelligence
8.4.1
ibm/cognos_business_intelligence
10.1
ibm/cognos_business_intelligence
10.1.1
ibm/cognos_business_intelligence
10.2
ibm/cognos_business_intelligence
10.2.1
ibm/cognos_business_intelligence
10.2.1.1
Published
Nov 18, 2013
Tracked Since
Feb 18, 2026