HIGH🇵🇱 Wersja polska

CVE-2026-5065

CVSS 8.8v3.1pub. 2026-05-27upd. 2026-06-02

IBM Controller 11.0.1, 11.1.0, 11.1.1, and 11.1.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • IBM Controller

    APP
    Ibm
    11.0.1 – 11.1.3 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-52902HIGH8.8ten sam produkt

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 client application contains hard cod...

CVE-2024-45084HIGH8.0ten sam produkt

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 could allow an authenticated attac...

CVE-2023-47160HIGH8.2ten sam produkt

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to an XML Extern...

CVE-2024-28777HIGH8.8ten sam produkt

IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to unrestricted de...

CVE-2024-40702HIGH8.2ten sam produkt

IBM Cognos Controller 11.0.0 through 11.0.1 and IBM Controller 11.1.0 could allow an unauthorized user to obta...