VYPR
Low severity2.5NVD Advisory· Published Jan 2, 2016· Updated Jun 17, 2026

CVE-2015-7435

CVE-2015-7435

Description

IBM Tivoli Common Reporting (TCR) 2.1 before IF14, 2.1.1 before IF22, 2.1.1.2 before IF9, 3.1.0.0 through 3.1.2 as used in Cognos Business Intelligence before 10.2 IF16, and 3.1.2.1 as used in Cognos Business Intelligence before 10.2.1.1 IF12 allows local users to bypass the Cognos Application Firewall (CAF) protection mechanism via leading whitespace in the BackURL field.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:a:ibm:tivoli_common_reporting:2.1:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:ibm:tivoli_common_reporting:2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_common_reporting:2.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_common_reporting:2.1.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_common_reporting:3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_common_reporting:3.1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_common_reporting:3.1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_common_reporting:3.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ibm:tivoli_common_reporting:3.1.2.1:*:*:*:*:*:*:*
    • (no CPE)range: 2.1 before IF14, 2.1.1 before IF22, 2.1.1.2 before IF9, 3.1.0.0 through 3.1.2, 3.1.2.1
  • Range: 10.2 before IF16, 10.2.1.1 before IF12

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.