Unrated severityNVD Advisory· Published Oct 4, 2015· Updated Jun 17, 2026
CVE-2015-1969
CVE-2015-1969
Description
Cross-site scripting (XSS) vulnerability in IBM Tivoli Common Reporting (TCR) 2.1 before IF13 and 2.1.1 before IF21, and TCR 3.1.x as used in Cognos Business Intelligence before 10.2 IF0015 and other products, allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8cpe:2.3:a:ibm:tivoli_common_reporting:2.1.0.0:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:ibm:tivoli_common_reporting:2.1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_common_reporting:2.1.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_common_reporting:3.1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_common_reporting:3.1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_common_reporting:3.1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:tivoli_common_reporting:3.1.2:*:*:*:*:*:*:*
- (no CPE)range: 2.1 before IF13, 2.1.1 before IF21
- Range: before 10.2 IF0015
Patches
Vulnerability mechanics
References
3- www-01.ibm.com/support/docview.wssnvdPatchVendor Advisory
- www.securityfocus.com/bid/76472nvd
- www.securitytracker.com/id/1034050nvd
News mentions
0No linked articles in our index yet.