CVE-2021-29867 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2021-29867

CWE

https://cwe.mitre.org/data/definitions/.html

IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated to view or edit a Jupyter notebook that they should not have access to. IBM X-Force ID: 206212.

Affected Software

Name	Vendor	Start Version	End Version
Cognos_analytics	Ibm	11.1.0 (including)	11.1.7 (excluding)
Cognos_analytics	Ibm	11.1.7 (including)	11.1.7 (including)
Cognos_analytics	Ibm	11.1.7-fixpack1 (including)	11.1.7-fixpack1 (including)
Cognos_analytics	Ibm	11.1.7-fixpack2 (including)	11.1.7-fixpack2 (including)
Cognos_analytics	Ibm	11.1.7-fixpack3 (including)	11.1.7-fixpack3 (including)
Cognos_analytics	Ibm	11.2.0 (including)	11.2.0 (including)

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/206212
https://security.netapp.com/advisory/ntap-20211223-0006/
https://www.ibm.com/support/pages/node/6520510
https://exchange.xforce.ibmcloud.com/vulnerabilities/206212
https://security.netapp.com/advisory/ntap-20211223-0006/
https://www.ibm.com/support/pages/node/6520510