2017-04-17 21:00:00
ibm
PUBLISHED
IBM Cognos TM1 10.1 and 10.2 provides a service to return the victims password with a valid session key. An authenticated attacker with user interaction could obtain this sensitive information. IBM X-Force ID: 114613.