CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2024-28778 – IBM Cognos Controller information disclosure
https://notcve.org/view.php?id=CVE-2024-28778
07 Jan 2025 — IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 is vulnerable to exposure of Artifactory API keys. This vulnerability allows users to publish code to private packages or repositories under the name of the organization. • https://www.ibm.com/support/pages/node/7179163 • CWE-798: Use of Hard-coded Credentials •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-25037 – IBM Cognos Controller information disclosure
https://notcve.org/view.php?id=CVE-2024-25037
07 Jan 2025 — IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 could allow a remote attacker to obtain sensitive information when a stack trace is returned in the browser. • https://www.ibm.com/support/pages/node/7179163 • CWE-209: Generation of Error Message Containing Sensitive Information •