CVE-2017-1783

IBM Cognos Analytics 11.0 could allow a local user to change parameters set from the Cognos Analytics menus without proper authentication. IBM X-Force ID: 136857.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4 MEDIUM
LOCAL
LOW
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
ibmCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 26%
VendorProductVersion
ibmcognos_analytics
11.0.0
ibmcognos_analytics
11.0.1
ibmcognos_analytics
11.0.2
ibmcognos_analytics
11.0.3
ibmcognos_analytics
11.0.4
ibmcognos_analytics
11.0.5.0
ibmcognos_analytics
11.0.6.0
ibmcognos_analytics
11.0.7.0
netapponcommand_insight
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.ibm.com/support/docview.wss?uid=swg22011561
http://www.securityfocus.com/bid/102863
http://www.securitytracker.com/id/1040299
https://exchange.xforce.ibmcloud.com/vulnerabilities/136857
https://security.netapp.com/advisory/ntap-20190329-0003/
https://security.netapp.com/advisory/ntap-20190401-0003/
http://www.ibm.com/support/docview.wss?uid=swg22011561
http://www.securityfocus.com/bid/102863
http://www.securitytracker.com/id/1040299
https://exchange.xforce.ibmcloud.com/vulnerabilities/136857
https://security.netapp.com/advisory/ntap-20190329-0003/
https://security.netapp.com/advisory/ntap-20190401-0003/