CVE-2024-41755: Ibm cognos dashboards vulnerability

Q: What is the severity of CVE-2024-41755?

CVE-2024-41755 has a high severity rating, allowing remote attackers to execute unauthorized actions.

Q: How do I fix CVE-2024-41755?

To mitigate CVE-2024-41755, users should update IBM Cognos Dashboards on Cloud Pak for Data to version 5.0.1 or later.

Q: Which versions of IBM Cognos Dashboards are affected by CVE-2024-41755?

CVE-2024-41755 affects IBM Cognos Dashboards on Cloud Pak for Data versions up to and including 5.0.0 and 4.8.0.

Q: What kind of attacks can be executed through CVE-2024-41755?

CVE-2024-41755 allows remote attackers to perform unauthorized actions due to dependency confusion.

Q: Is there a workaround for CVE-2024-41755?

There are no known workarounds for CVE-2024-41755, so updating to a secure version is necessary.

Published Dec 11, 2024

Updated

IBM Cognos Dashboards on Cloud Pak for Data could allow a remote attacker to perform unauthorized actions due to dependency confusion.

Affected Software

2 affected components

IBM Cognos Dashboards on Cloud Pak for Data<=5.0.0

IBM Cognos Dashboards on Cloud Pak for Data<=4.8.0

Event History

Dec 11, 2024

CVE Published

via IBM·12:00 AM

Parent advisories

This vulnerability appears in the following advisories.

IBM-7177766

Frequently Asked Questions

What is the severity of CVE-2024-41755?

CVE-2024-41755 has a high severity rating, allowing remote attackers to execute unauthorized actions.

How do I fix CVE-2024-41755?

To mitigate CVE-2024-41755, users should update IBM Cognos Dashboards on Cloud Pak for Data to version 5.0.1 or later.

Which versions of IBM Cognos Dashboards are affected by CVE-2024-41755?

CVE-2024-41755 affects IBM Cognos Dashboards on Cloud Pak for Data versions up to and including 5.0.0 and 4.8.0.

What kind of attacks can be executed through CVE-2024-41755?

CVE-2024-41755 allows remote attackers to perform unauthorized actions due to dependency confusion.

Is there a workaround for CVE-2024-41755?