CNNVD-202508-3078 Information
CNNVD ID
CNNVD-202508-3078
Related CVE
- CNNVD Published: 2025-08-26
Description (Chinese)
IBM Cognos Command Center是美国国际商业机器(IBM)公司的一款软件产品,用于帮助组织管理和监控其 IBM Cognos Business Intelligence 解决方案。 IBM Cognos Command Center 10.2.4.1版本和10.2.5版本存在安全漏洞,该漏洞源于BinaryFormatter函数不安全使用,可能导致本地用户执行任意代码。
Description (English)
IBM Cognos Command Center is a software product of the United States International Business Machine (IBM) company to help the organization manage and monitor its IBM Cognos Business Intelligence solution. There is a security gap between IBM Cognos Command Center Version 10.2.4.1 and Version 10.2.5, which stems from the unsafe use of the BinaryFormotter function, which may lead local users to enforce any code.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
国际商业机器
Published
2025-08-26
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7242159 https://nvd.nist.gov/vuln/detail/CVE-2025-1994
Patch
https://www.ibm.com/support/pages/node/7242159
Share on: