Описание
IBM Cognos Analytics 11 Configuration tool, under certain circumstances, will bypass OIDC namespace signature verification on its id_token. IBM X-Force ID: 150902.
IBM Cognos Analytics 11 Configuration tool, under certain circumstances, will bypass OIDC namespace signature verification on its id_token. IBM X-Force ID: 150902.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2018-1842
- https://exchange.xforce.ibmcloud.com/vulnerabilities/150902
- https://security.netapp.com/advisory/ntap-20190329-0003
- https://security.netapp.com/advisory/ntap-20190401-0003
- https://www.ibm.com/support/docview.wss?uid=ibm10738249
- http://www.securitytracker.com/id/1042031
Связанные уязвимости
CVSS3: 3.6
nvd
около 7 лет назад
IBM Cognos Analytics 11 Configuration tool, under certain circumstances, will bypass OIDC namespace signature verification on its id_token. IBM X-Force ID: 150902.