CVE-2013-5445

Published: Mar 25, 2014Modified: May 6, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

IBM Cognos Express 9.0 before IFIX 2, 9.5 before IFIX 2, 10.1 before IFIX 2, and 10.2.1 before FP1 allows local users to obtain sensitive cleartext information by leveraging knowledge of a static decryption key.

Affected (4)

Products: Ibm: Cognos Express

Ibm

1 product

Cognos Express

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Ibm Cognos Express	Version 10.1
Ibm Cognos Express	Version 10.2.1
Ibm Cognos Express	Version 9.0
Ibm Cognos Express	Version 9.5

Related CWEs

CWE-310

References (4)

http://www-01.ibm.com/support/docview.wss?uid=swg21667626

Source: psirt@us.ibm.com

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/87821

Source: psirt@us.ibm.com

http://www-01.ibm.com/support/docview.wss?uid=swg21667626

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/87821

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.