CVE-2016-0254
published 2017-06-07CVE-2016-0254: IBM Cognos Business Intelligence 10.1 and 10.2 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML…
medium6.5CVSS 3.0
AVNACLPRLUINSUCNINAH
IBM Cognos Business Intelligence 10.1 and 10.2 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote authenticated attacker could exploit this vulnerability to consume all available CPU resources and cause a denial of service. IBM X-Force ID: 110563.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | cognos_business_intelligence | — | — |
| ibm | cognos_business_intelligence | — | — |
| ibm | cognos_business_intelligence | — | — |
| ibm | cognos_business_intelligence | — | — |
| ibm | cognos_business_intelligence | — | — |