{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T13:10:18.618","vulnerabilities":[{"cve":{"id":"CVE-2024-51466","sourceIdentifier":"psirt@us.ibm.com","published":"2024-12-20T14:15:24.250","lastModified":"2025-07-02T15:58:56.447","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Cognos Analytics 11.2.0 through 11.2.4 FP4 and \n\n12.0.0 through 12.0.4\n\nis vulnerable to an Expression Language (EL) Injection vulnerability. A remote attacker could exploit this vulnerability to expose sensitive information, consume memory resources, and/or cause the server to crash when using a specially crafted EL statement."},{"lang":"es","value":"IBM Cognos Analytics 11.2.0 a 11.2.4 FP4 y 12.0.0 a 12.0.4 es vulnerable a una vulnerabilidad de inyección de lenguaje de expresión (EL). Un atacante remoto podría aprovechar esta vulnerabilidad para exponer información confidencial, consumir recursos de memoria y/o provocar que el servidor se bloquee al utilizar una declaración EL especialmente manipulada."}],"metrics":{"cvssMetricV31":[{"source":"psirt@us.ibm.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":9.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":6.0}]},"weaknesses":[{"source":"psirt@us.ibm.com","type":"Secondary","description":[{"lang":"en","value":"CWE-917"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_analytics:*:*:*:*:*:*:*:*","versionStartIncluding":"11.2.0","versionEndExcluding":"11.2.4","matchCriteriaId":"FA7F561D-2D45-4BDB-AE84-1BD057DC9930"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_analytics:*:*:*:*:*:*:*:*","versionStartIncluding":"12.0.0","versionEndExcluding":"12.0.4","matchCriteriaId":"90D7AA5F-889B-4FC6-AE9D-9659FCAC13FF"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_analytics:11.2.4:-:*:*:*:*:*:*","matchCriteriaId":"A1D81212-AFFE-4A73-AAC1-E558973FC452"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_analytics:11.2.4:fixpack1:*:*:*:*:*:*","matchCriteriaId":"07DC144D-62FC-4808-A77A-642871C1F8FC"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_analytics:11.2.4:fixpack2:*:*:*:*:*:*","matchCriteriaId":"2A61B920-B490-48A8-BF00-13B8854683FD"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_analytics:11.2.4:fixpack3:*:*:*:*:*:*","matchCriteriaId":"1F65BC6D-9A9D-45B9-919B-2855586C4F1B"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_analytics:11.2.4:fixpack4:*:*:*:*:*:*","matchCriteriaId":"684FA3C7-ABEA-4CB8-8D88-4BA18F1A73FB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:cognos_analytics:12.0.4:-:*:*:*:*:*:*","matchCriteriaId":"CED100CC-0C88-41B9-8742-4AD51C105527"}]}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7179496","source":"psirt@us.ibm.com","tags":["Patch","Vendor Advisory"]}]}}]}