Medium severity6.1NVD Advisory· Published Jun 24, 2022· Updated Jun 17, 2026
CVE-2021-39047
CVE-2021-39047
Description
IBM Planning Analytics 2.0 and IBM Cognos Analytics 11.2.1, 11.2.0, and 11.1.7 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 214349.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: 2.0
11.2.1, 11.2.0, and 11.1.7+ 1 more
- (no CPE)range: 11.2.1, 11.2.0, and 11.1.7
- (no CPE)range: 11.2.0
Patches
Vulnerability mechanics
References
4- www.ibm.com/support/pages/node/6565099nvdPatchVendor Advisory
- www.ibm.com/support/pages/node/6597241nvdPatchVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/214349nvdVDB EntryVendor Advisory
- security.netapp.com/advisory/ntap-20220729-0002/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.