IBM Cognos Analytics Mobile Server 11.1.7, 11.2.4, and 12...
Moderate severity
Unreviewed
Published
Feb 26, 2024
to the GitHub Advisory Database
•
Updated Jun 21, 2024
Description
Published by the National Vulnerability Database
Feb 26, 2024
Published to the GitHub Advisory Database
Feb 26, 2024
Last updated
Jun 21, 2024
IBM Cognos Analytics Mobile Server 11.1.7, 11.2.4, and 12.0.0 is vulnerable to Denial of Service due to due to weak or absence of rate limiting. By making unlimited http requests, it is possible for a single user to exhaust server resources over a period of time making service unavailable for other legitimate users. IBM X-Force ID: 230510.
References