Vulnerability feed

Vulnerability

CVE-2019-4716

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2019-4716
Description:: IBM Planning Analytics 2.0.0 through 2.0.8 is vulnerable to a configuration overwrite that allows an unauthenticated user to login as "admin", and then execute code as root or SYSTEM via TM1 scripting. IBM X-Force ID: 172094.
Last updated date:: 02/01/2023

Reports

alt

ACTIVELY EXPLOITED

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 07/23/2021
Reference url to background: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Type:: exploit
Confidence:: HIGH
Date of publishing:: 08/27/2021
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/misc/ibm_tm1_unauth_rce.rb

Type:: exploit
Confidence:: HIGH
Date of publishing:: 02/01/2023
Reference url to background: http://packetstormsecurity.com/files/156953/IBM-Cognos-TM1-IBM-Planning-Analytics-Server-Configuration-Overwrite-Code-Execution.html

Type:: exploit
Confidence:: HIGH
Date of publishing:: 02/01/2023
Reference url to background: http://seclists.org/fulldisclosure/2020/Mar/44

Vulnerability Feed Contributors About Blog

@inTheWild

©2024 |