CVE-2021-20556 Information

Description

IBM Cognos Controller 10.4.1 10.4.2 and 11.0.0 could allow a remote user to enumerate usernames due to differentiating error messages on existing usernames. IBM X-Force ID: 199181.

Reference

https://www.ibm.com/support/pages/node/7149876 https://exchange.xforce.ibmcloud.com/vulnerabilities/199181