CVE-2024-55907: IBM Cognos Mobile information disclosure

2.0 CVSS

Description

IBM Cognos Analytics Mobile 1.1 for iOS application could allow an attacker to reverse engineer the codebase to gain knowledge about the programming technique, interface, class definitions, algorithms and functions used due to weak obfuscation.

Classification

CVE ID: CVE-2024-55907

CVSS Base Severity: LOW

CVSS Base Score: 2.0

CVSS Vector: CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Problem Types

CWE-540 Inclusion of Sensitive Information in Source Code

Affected Products

Vendor: IBM

Product: Cognos Analytics Mobile

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.02% (probability of being exploited)

EPSS Percentile: 1.84% (scored less or equal to compared to others)

EPSS Date: 2025-03-31 (when was this score calculated)

References

https://nvd.nist.gov/vuln/detail/CVE-2024-55907
https://www.ibm.com/support/pages/node/7184429

Timeline

2025-03-02 16:40:23 UTC
CVE

IBM Cognos Mobile information disclosure