Unrated severityNVD Advisory· Published Jan 7, 2025· Updated Jan 7, 2025
IBM Cognos Controller improper certificate validation
CVE-2024-40702
Description
IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 could allow an unauthorized user to obtain valid tokens to gain access to protected resources due to improper certificate validation.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:ibm:cognos_controller:11.0.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:ibm:cognos_controller:11.0.0:*:*:*:*:*:*:*range: 11.0.0
- cpe:2.3:a:ibm:controller:11.1.0:*:*:*:*:*:*:*range: 11.1.0
- (no CPE)range: 11.0.0 - 11.0.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.