IBM Cognos Transformer
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in IBM Cognos Transformer.
By the Year
In 2026 there have been 2 vulnerabilities in IBM Cognos Transformer with an average score of 5.9 out of ten.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 2 | 5.90 |
It may take a day or so for new Cognos Transformer vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Cognos Transformer Security Vulnerabilities
IBM Cognos Analytics/Transformer XSS (12.1.0)
CVE-2025-3633
5.4 - Medium
- May 27, 2026
IBM Cognos Analytics 11.2.0, 11.2.4, 12.0, and 12.1.0 and IBM Cognos Transformer 11.2.4, 12.0, and 12.1.0 are vulnerable to cross-site scripting (XSS). This vulnerability allows a remote attacker to inject arbitrary JavaScript code into the web user interface, which may alter the intended functionality and could lead to the disclosure of credentials within a trusted session.
XSS
IBM Cognos Analytics 11.2.0-12.1.0 & Cognos Transformer XSS in Admin
CVE-2025-36126
6.4 - Medium
- May 26, 2026
IBM Cognos Analytics 11.2.0, 12.0, and 12.1.0 and IBM Cognos Transformer 12.0, 11.2.4, and 12.1.0 is vulnerable to stored cross-site scripting (XSS) in Cognos Adminstration. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Cognos Transformer or by IBM? Click the Watch button to subscribe.
