IBM Cognos Dashboards
Moderate fix2 remedies
cpe:2.3:a:ibm:cognos_dashboards_on_cloud_pak_for_data:*:*:*:*:*:*:*
Moderate fix2 remedies
- 5.0.0
- 4.8.0
IBM Cognos Dashboards Dependency Confusion Vulnerability Allowing Unauthorized Actions
Vulnerability
Patched
A dependency confusion vulnerability has been identified in IBM Cognos Dashboards versions 4.0.7 and 5.0.0 on Cloud Pak for Data. This vulnerability could enable a remote attacker to perform unauthorized actions.
Impact
Exploitation of this vulnerability could lead to unauthorized actions being performed within the application.
Remediation
Users are advised to upgrade to version 5.1 or to version 4.8.0. Instructions for upgrading from version 5.0.0 to 5.1.0 and from version 4.8.0 to 5.1.0 are available in the IBM Cloud Pak for Data documentation.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
1.4impact
5.0exploitability
7.0remediation
7.7relevance
0.0threat
0.0urgency
2.9incentive
5.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.