Vulnerability in Ibm Planning Analytics
CVE-2019-4716
IBM Planning Analytics 2.0.0 through 2.0.8 is vulnerable to a configuration overwrite that allows an unauthenticated user to login as "admin", and then execute code as root or SYSTEM via TM1 scripting. IBM X-Force ID: 172094.
EPSS: 0.934 (99.8th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 10.0 (Critical). Vector: CVSS:3.0/UI:N/AC:L/PR:N/I:H/S:C/AV:N/C:H/A:H/RC:C/RL:O/E:U.
Affected products
- Ibm Planning Analytics — versions 2.0.0, 2.0.8
CISA KEV (Known Exploited Vulnerabilities)
This CVE is on the CISA KEV catalog, added on . CISA KEV inclusion means CISA has confirmed in-the-wild exploitation; US federal agencies are required to remediate within a published due date.
BOD 22-01 due date: .
Required action: Apply updates per vendor instructions.
Public proof-of-concept exploits
References
- www.ibm.com/support/pages/node/1127781 (x_refsource_CONFIRM)
- ibm-pa-cve20194716-code-exec (172094) (vdb-entry, x_refsource_XF)
- 20200327 CVE-2019-4716: conf overwrite + auth bypass = rce as root / SYSTEM on IBM PA / TM1 (mailing-list, x_refsource_FULLDISC)
- packetstormsecurity.com/files/156953/IBM-Cognos-TM1-IBM-Planning-Analytics-Serv… (x_refsource_MISC)
Frequently asked questions
- What is CVE-2019-4716?
- CVE-2019-4716 is a critical-severity vulnerability in Ibm Planning Analytics. CVSS score: 10.0/10. Published 2019-12-18.
- How severe is CVE-2019-4716?
- Critical severity. CVSS v3 base score is 10.0 out of 10.
- Is CVE-2019-4716 known to be exploited?
- Yes. CVE-2019-4716 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2021-11-03), indicating it is being actively exploited. 6 public proof-of-concept repositories are indexed.