CVSS: 2.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-55907 – IBM Cognos Mobile information disclosure
https://notcve.org/view.php?id=CVE-2024-55907
02 Mar 2025 — IBM Cognos Analytics Mobile 1.1 for iOS application could allow an attacker to reverse engineer the codebase to gain knowledge about the programming technique, interface, class definitions, algorithms and functions used due to weak obfuscation. • https://www.ibm.com/support/pages/node/7184429 • CWE-540: Inclusion of Sensitive Information in Source Code •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-0895 – IBM Cognos Mobile information disclosure
https://notcve.org/view.php?id=CVE-2025-0895
02 Mar 2025 — IBM Cognos Analytics Mobile 1.1 for Android could allow a user with physical access to the device, to obtain sensitive information from debugging code log messages. • https://www.ibm.com/support/pages/node/7184430 • CWE-215: Insertion of Sensitive Information Into Debugging Code •
CVSS: 4.2EPSS: 0%CPEs: 2EXPL: 0CVE-2023-38009 – IBM Cognos Analytics Mobile information disclosure
https://notcve.org/view.php?id=CVE-2023-38009
26 Jan 2025 — IBM Cognos Mobile Client 1.1 iOS may be vulnerable to information disclosure through man in the middle techniques due to the lack of certificate pinning. • https://www.ibm.com/support/pages/node/7172691 • CWE-295: Improper Certificate Validation •
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39081 – IBM Cognos Analytics Mobile information disclosure
https://notcve.org/view.php?id=CVE-2021-39081
19 Dec 2024 — IBM Cognos Analytics Mobile for Android 1.1.14 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM Cognos Analytics Mobile para Android 1.1.14 utiliza algoritmos criptográficos más débiles de lo esperado que podrían permitir a un atacante descifrar información altamente confidencial. • https://www.ibm.com/support/pages/node/6555140 • CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39080
https://notcve.org/view.php?id=CVE-2021-39080
14 Feb 2022 — Due to weak obfuscation, IBM Cognos Analytics Mobile for Android application prior to version 1.1.14 , an attacker could be able to reverse engineer the codebase to gain knowledge about the programming technique, interface, class definitions, algorithms and functions used. IBM X-Force ID: 215593. Debido a una débil ofuscación, la aplicación IBM Cognos Analytics Mobile para Android versiones anteriores a 1.1.14 , un atacante podría ser capaz de llevar a cabo ingeniería inversa en el código base para consegui... • https://exchange.xforce.ibmcloud.com/vulnerabilities/215593 •
CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0CVE-2021-39079
https://notcve.org/view.php?id=CVE-2021-39079
14 Feb 2022 — IBM Cognos Analytics Mobile for Android applications prior to version 1.1.14 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 215592. Las aplicaciones de IBM Cognos Analytics Mobile para Android versiones anteriores a 1.1.14, son vulnerables a un ataque de tipo cross-site scripting. Esta vulnerabilidad permite ... • https://exchange.xforce.ibmcloud.com/vulnerabilities/215592 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •