Back to search
CVE-2016-8960
Published: Mar 27, 2017
Modified: Aug 6, 2024
PUBLISHED
Description
IBM Cognos Business Intelligence 10.2 could allow a user with lower privilege Capabilities to adopt the Capabilities of a higher-privilege user by intercepting the higher-privilege user's cookie value from its HTTP request and then reusing it in subsequent requests. IBM Reference #: 1993718.
| Vendor | Product | Versions |
|---|---|---|
IBM Corporation | Cognos Business Intelligence | affected 10.2affected 10.2.1affected 10.2.1.1affected 10.2.2affected 2 |
References
http://www.ibm.com/support/docview.wss?uid=swg21993718
x_refsource_CONFIRM
96963
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now