What is CVE-2020-4879?

CVE-2020-4879 is a high-severity vulnerability in Ibm Cognos Controller. CVSS score: 7.3/10. Published 2022-01-21.

How severe is CVE-2020-4879?

High severity. CVSS v3 base score is 7.3 out of 10.

Vulnerability in Ibm Cognos Controller

CVE-2020-4879

IBM Cognos Controller 10.4.0, 10.4.1, and 10.4.2 could allow a remote attacker to bypass security restrictions, caused by improper validation of authentication cookies. IBM X-Force ID: 190847.

EPSS: 0.007 (72.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.3 (High). Vector: CVSS:3.0/C:L/A:L/S:U/PR:N/I:L/AC:L/AV:N/UI:N/E:U/RL:O/RC:C.

Affected products

Ibm Cognos Controller — versions 10.4.0, 10.4.1, 10.4.2

References

www.ibm.com/support/pages/node/6509856 (x_refsource_CONFIRM)
ibm-cognos-cve20204879-priv-escalation (190847) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2020-4879?: CVE-2020-4879 is a high-severity vulnerability in Ibm Cognos Controller. CVSS score: 7.3/10. Published 2022-01-21.
How severe is CVE-2020-4879?: High severity. CVSS v3 base score is 7.3 out of 10.