โ† Back to Dashboard

CVE-2025-36126

MEDIUM NVD
CVSS Score
6.4
Severity
MEDIUM
Source
NVD
Published
May 26, 2026
Description

IBM Cognos Analytics 11.2.0, 12.0, and 12.1.0 and IBM Cognos Transformer 12.0, 11.2.4, and 12.1.0 is vulnerable to stored cross-site scripting (XSS) in Cognos Adminstration. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

View Full Details โ† Back