VYPR
Unrated severityNVD Advisory· Published Mar 1, 2025· Updated Sep 1, 2025

IBM Controller information disclosure

CVE-2024-41778

Description

IBM Controller 11.0.0 through 11.0.1 and 11.1.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • IBM/Cognos Controllercpe-rescue2 versions
    cpe:2.3:a:ibm:controller:11.0.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ibm:controller:11.0.0:*:*:*:*:*:*:*range: 11.0.0
    • (no CPE)range: 11.0.0 - 11.0.1, 11.1.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.