Volerion logoVolerion
Volerion logoVolerion

IBM Controller and IBM Cognos Controller Sensitive Credential Exposure Vulnerability

Vulnerability

A vulnerability exists in IBM Controller versions 11.0.0, 11.0.1, and 11.1.0, as well as in IBM Cognos Controller versions 11.0.0 through 11.0.1. This vulnerability could allow an authenticated user to access sensitive credentials that may have been unintentionally included in the source code.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive credentials, potentially allowing for further exploitation or access within the application or system.

Remediation

Users are advised to upgrade to IBM Controller 11.1.0.4 or IBM Cognos Controller 11.0.1.5, both of which are available for Cloud deployments. For non-Cloud deployments, IBM Controller users can download version 11.1.0 FP4 from Fix Central, while IBM Cognos Controller users can download version 11.0.1 FP5 from Fix Central.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
2.6
impact
2.5
exploitability
4.9
remediation
7.7
relevance
0.0
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.