CVE-2021-39047 in IBM and NetApp Products
Published on June 24, 2022

IBM Planning Analytics 2.0 and IBM Cognos Analytics 11.2.1, 11.2.0, and 11.1.7 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 214349.

NVD

Products Associated with CVE-2021-39047

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2021-39047 are published in these products:

IBM Planning Analytics

IBM Cognos Analytics

NetApp Oncommand Insight

Affected Versions

IBM Cognos Analytics:

Version 11.2.0 is affected.
Version 11.1.7 is affected.
Version 11.2.1 is affected.

Exploit Probability

EPSS

0.22%

Percentile

43.78%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-39047 in IBM and NetApp ProductsPublished on June 24, 2022

Products Associated with CVE-2021-39047

Affected Versions

Exploit Probability

CVE-2021-39047 in IBM and NetApp Products
Published on June 24, 2022