Vulnerabilities (CVE)

Filtered by vendor Ibm Subscribe
Filtered by product Planning Analytics Cloud
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-4670 1 Ibm 2 Planning Analytics Cloud, Planning Analytics Local 2024-11-21 6.4 MEDIUM 9.1 CRITICAL
IBM Planning Analytics Local 2.0 connects to a Redis server. The Redis server, an in-memory data structure store, running on the remote host is not protected by password authentication. A remote attacker can exploit this to gain unauthorized access to the server. IBM X-Force ID: 186401.
CVE-2020-4669 1 Ibm 2 Planning Analytics Cloud, Planning Analytics Local 2024-11-21 6.4 MEDIUM 9.1 CRITICAL
IBM Planning Analytics Local 2.0 connects to a MongoDB server. MongoDB, a document-oriented database system, is listening on the remote port, and it is configured to allow connections without password authentication. A remote attacker can gain unauthorized access to the database. IBM X-Force ID: 184600.