CVE-2016-6077
MEDIUMIBM Cognos Disclosure Mgmt <10.2 - Privilege Escalation
Title source: llmDescription
IBM Cognos Disclosure Management 10.2 could allow a malicious attacker to execute commands as a lower privileged user that opens a malicious document. IBM Reference #: 1991584.
Scores
CVSS v3
5.3
EPSS
0.0008
EPSS Percentile
23.7%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Classification
CWE
CWE-284
Status
published
Affected Products (17)
ibm/cognos_disclosure_management
ibm/cognos_disclosure_management
ibm/cognos_disclosure_management
ibm/cognos_disclosure_management
ibm/cognos_disclosure_management
ibm/cognos_disclosure_management
ibm/cognos_disclosure_management
IBM Corporation/Cognos Disclosure Management
< 10.2.0
IBM Corporation/Cognos Disclosure Management
< 10.1.1
IBM Corporation/Cognos Disclosure Management
< 10.2
IBM Corporation/Cognos Disclosure Management
< 10.2.1
IBM Corporation/Cognos Disclosure Management
< 10.2.2
IBM Corporation/Cognos Disclosure Management
< 10.2.3
IBM Corporation/Cognos Disclosure Management
< 10.2.3.1
IBM Corporation/Cognos Disclosure Management
< 10.2.4
... and 2 more
Timeline
Published
Feb 15, 2017
Tracked Since
Feb 18, 2026