cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-38009,https://securityvulnerability.io/vulnerability/CVE-2023-38009,Information Disclosure Risk in IBM Cognos Mobile Client for iOS,"The IBM Cognos Mobile Client for iOS version 1.1 may be susceptible to information disclosure vulnerabilities. This is due to the absence of certificate pinning, which opens the door to man-in-the-middle attacks where an attacker could intercept and access sensitive user data being transmitted over the network. Users are encouraged to implement additional security measures to protect their information.",IBM,Cognos Analytics Mobile,4.2,MEDIUM,0.0005200000014156103,false,,false,false,false,,false,false,false,,2025-01-26T15:57:42.477Z,0
CVE-2021-39081,https://securityvulnerability.io/vulnerability/CVE-2021-39081,Cryptographic Flaw in IBM Cognos Analytics Mobile for Android,"CVE-2021-39081 is a significant cryptographic vulnerability found in IBM Cognos Analytics Mobile for Android version 1.1.14. This vulnerability arises from the use of weaker than expected cryptographic algorithms, which could permit an attacker to decrypt sensitive information inadvertently. Organizations using this version of the application risk exposing critical data, making it imperative to evaluate and implement the necessary security measures to mitigate this threat.",IBM,Cognos Analytics Mobile For Android,5.9,MEDIUM,0.0008699999889358878,false,,false,false,false,,,false,false,,2024-12-19T01:15:00.000Z,0
CVE-2021-39079,https://securityvulnerability.io/vulnerability/CVE-2021-39079,Cross-Site Scripting Vulnerability in IBM Cognos Analytics Mobile for Android,"The IBM Cognos Analytics Mobile application for Android is susceptible to a cross-site scripting vulnerability that affects versions prior to 1.1.14. This flaw permits attackers to inject arbitrary JavaScript code into the Web UI. As a result, this could modify the application's expected behavior and potentially allow attackers to obtain user credentials during active sessions.",IBM,Cognos Analytics Mobile,5.4,MEDIUM,0.0005000000237487257,false,,false,false,false,,,false,false,,2022-02-14T18:15:00.000Z,0
CVE-2021-39080,https://securityvulnerability.io/vulnerability/CVE-2021-39080,Weak Obfuscation in IBM Cognos Analytics Mobile for Android,"The IBM Cognos Analytics Mobile application for Android, prior to version 1.1.14, suffers from weak obfuscation. This allows attackers to potentially reverse engineer the application's codebase, exposing sensitive programming techniques, interface details, class definitions, algorithms, and functions. This vulnerability highlights the risks associated with inadequate code protection mechanisms, which can lead to unauthorized access to proprietary information and software exploitation.",IBM,Cognos Analytics Mobile,4.8,MEDIUM,0.0006600000197067857,false,,false,false,false,,,false,false,,2022-02-14T18:15:00.000Z,0