Ibm Planning Analytics Workspace
5 CVEs affecting Ibm Planning Analytics Workspace. Latest disclosed: 2022-09-08. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-22308 | High | 7.1 | 2022-02-21 | IBM Planning Analytics 2.0 is vulnerable to a Remote File Include (RFI) attack. User input could be passed into file include commands and the web application c… |
CVE-2022-22392 | Medium | 6.8 | 2022-04-25 | IBM Planning Analytics Local 2.0 could allow an attacker to upload arbitrary executable files which, when executed by an unsuspecting victim could result in co… |
CVE-2021-39040 | Medium | 6.3 | 2022-04-25 | IBM Planning Analytics Workspace 2.0 could be vulnerable to malicious file upload by not validating the file types or sizes. Attackers can make use of this wea… |
CVE-2020-4649 | Medium | 4.3 | 2020-11-03 | IBM Planning Analytics Local 2.0.9.2 and IBM Planning Analytics Workspace 57 could expose data to non-privleged users by not invalidating TM1Web user sessions… |
CVE-2022-22314 | Medium | 4.0 | 2022-09-08 | IBM Planning Analytics Local 2.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 217371. |