CVE-2023-38724 Information

Description

IBM Cognos Controller 10.4.1 10.4.2 and 11.0.0 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements which could allow the attacker to view add modify or delete information in the back-end database. IBM X-Force ID: 262183.

Reference

https://www.ibm.com/support/pages/node/7149876 https://exchange.xforce.ibmcloud.com/vulnerabilities/262183