Ibm Cognos Command Center — known CVE vulnerabilities
Every CVE whose affected-product data names Ibm Cognos Command Center, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2025-1994 — CVSS 7.8 (high): IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a local user to execute arbitrary code on the system due to the use of unsafe use…
CVE-2025-2697 — CVSS 7.4 (high): IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By…
CVE-2013-4000 — CVSS 6.8 (medium): Multiple cross-site request forgery (CSRF) vulnerabilities in IBM Cognos Command Center before 10.2 allow remote attackers to hijack the…
CVE-2025-1494 — CVSS 6.1 (medium): IBM Cognos Command Center 10.2.4.1 and 10.2.5 could allow a remote attacker to hijack the clicking action of the victim. By persuading a…
CVE-2023-50324 — CVSS 5.3 (medium): IBM Cognos Command Center 10.2.4.1 and 10.2.5 exposes details the X-AspNet-Version Response Header that could allow an attacker to obtain…
CVE-2024-31899 — CVSS 4.3 (medium): IBM Cognos Command Center 10.2.4.1 and 10.2.5 could disclose highly sensitive user information to an authenticated user with physical…
CVE-2013-4001 — CVSS 4.3 (medium): Session fixation vulnerability in IBM Cognos Command Center before 10.2 allows remote attackers to hijack web sessions via an authorization…
CVE-2022-38707 — CVSS 4.0 (medium): IBM Cognos Command Center 10.2.4.1 could allow a local attacker to obtain sensitive information due to insufficient session expiration. IBM…