admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2024/CVE-2024-407xx/CVE-2024-40703.json
cad-safe-bot c6c9b14fcd Auto-Update: 2024-09-27T18:00:17.858694+00:00
2024-09-27 18:03:17 +00:00

118 lines
3.9 KiB
JSON
Raw Blame History

{
"id": "CVE-2024-40703",
"sourceIdentifier": "psirt@us.ibm.com",
"published": "2024-09-22T13:15:10.960",
"lastModified": "2024-09-27T16:49:46.177",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3, and IBM Cognos Analytics Reports for iOS 11.0.0.7 could allow a local attacker to obtain sensitive information in the form of an API key. An attacker could use this information to launch further attacks against affected applications."
},
{
"lang": "es",
"value": "IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3 e IBM Cognos Analytics Reports para iOS 11.0.0.7 podr\u00edan permitir que un atacante local obtenga informaci\u00f3n confidencial en forma de una clave API. Un atacante podr\u00eda utilizar esta informaci\u00f3n para lanzar otros ataques contra las aplicaciones afectadas."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "psirt@us.ibm.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "psirt@us.ibm.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-522"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:cognos_analytics:*:*:*:*:*:*:*:*",
"versionStartIncluding": "11.2.0",
"versionEndIncluding": "11.2.3",
"matchCriteriaId": "66978806-0222-4AC6-B8E3-324154916FFA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:cognos_analytics:*:*:*:*:*:*:*:*",
"versionStartIncluding": "12.0.0",
"versionEndExcluding": "12.0.3",
"matchCriteriaId": "7A68167C-53E1-4785-A86C-19414F1F25A8"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:cognos_analytics:11.2.4:-:*:*:*:*:*:*",
"matchCriteriaId": "A1D81212-AFFE-4A73-AAC1-E558973FC452"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:cognos_analytics:12.0.3:-:*:*:*:*:*:*",
"matchCriteriaId": "42EB9F80-DCF1-474F-A5A5-7BC9F0B3BF58"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:cognos_analytics:12.0.3:interim_fix_1:*:*:*:*:*:*",
"matchCriteriaId": "706340D8-0E0B-4775-B90A-E696CFFB9901"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ibm:cognos_analytics_reports:11.0.0.7:*:*:*:*:iphone_os:*:*",
"matchCriteriaId": "A3CC42CE-826A-404F-8BE8-EBE1AE9FEAC0"
}
]
}
]
}
],
"references": [
{
"url": "https://www.ibm.com/support/pages/node/7160700",
"source": "psirt@us.ibm.com",
"tags": [
"Patch",
"Vendor Advisory"
]
},
{
"url": "https://www.ibm.com/support/pages/node/7168038",
"source": "psirt@us.ibm.com",
"tags": [
"Patch",
"Vendor Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink