IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated user to execute code remotely due to incorrectly neutralizaing user-contrlled input that could be interpreted a a server-side include (SSI) directive. IBM X-Force ID: 199915.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/199915 | VDB Entry Vendor Advisory |
https://security.netapp.com/advisory/ntap-20211112-0005/ | Third Party Advisory |
https://www.ibm.com/support/pages/node/6491661 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2021-10-14T00:00:00
Updated: 2021-11-12T08:06:15
Reserved: 2021-03-31T00:00:00
Link: CVE-2021-29679
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-10-15T16:15:07.387
Modified: 2021-11-17T02:42:43.257
Link: CVE-2021-29679
JSON object: View
Redhat Information
No data.
CWE