How severe is CVE-2024-41752?

CVE-2024-41752 has a CVSS v3 score of 5.4 (MEDIUM).

CVE-2024-41752

Name: cognos_analytics
Author: ibm

5.4MEDIUM

IBM Cognos Analytics 11.2.0 through 11.2.4 and 12.0.0 through 12.0.3 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the vi

Published: 12/18/2024Updated: 1/10/2025

Description

IBM Cognos Analytics 11.2.0 through 11.2.4 and 12.0.0 through 12.0.3 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.

AI AnalysisPowered by AI

Affected Products

ibmcognos_analytics

References

https://www.ibm.com/support/pages/node/7177223
Vendor Advisory