VDB
CVE-2020-4951
CVE-2020-4951
PUBLISHED
CVSS 4 MEDIUM
IBM Cognos Analytics 11.1.7 and 11.2.0 contains locally cached browser data, that could allow a local attacker to obtain sensitive information.
EPSS 0.07% · 21.3th percentile
Risk Scores
CVSS 3.0
4
CVSS:3.0/AV:L/PR:N/A:N/S:U/UI:N/AC:L/C:L/I:N/RC:C/E:U/RL:O
EPSS Score
0.07%
21.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| IBM | Cognos Analytics | 11.2.0, 11.1.7 |
| netapp | oncommand_insight | |
| ibm | cognos_analytics | 11.1.7, 11.2.0 |
Exploit Intelligence
Timeline
- Oct 15, 2021 CVE Published
- Oct 16, 2021 EPSS Score
- Oct 21, 2021 EPSS Score
- Nov 12, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 6, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Apr 3, 2022 EPSS Score
- Jul 26, 2022 EPSS Score
- Sep 20, 2022 EPSS Score
- Nov 16, 2022 EPSS Score
References
- https://www.ibm.com/support/pages/node/6491661 advisory
- https://www.ibm.com/support/pages/node/6493729 advisory
- ibm-cognos-cve20204951-info-disc (192027) vdb
- https://security.netapp.com/advisory/ntap-20211112-0005/ url
- https://nvd.nist.gov/vuln/detail/CVE-2020-4951 advisory
- https://security.netapp.com/advisory/ntap-20211112-0005 url