A new Flexera Community experience is coming on November 25th, click here for more information.
Hi All,
Working on a custom project, I recently deployed the latest version 11.1.7-2304260612 of 'Flexera Analytics' (aka: IBM Cognos) that is provided with the FNMS 2023 R2 release.
The Qualys Enterprise Security Suite used in the customer enviroment reported dozens of security vulnerabilities (see below) in the IBM Cognos 11.1.7-2304260612 version immediately. The IT Department requested that this version of COGNOS is uninstalled immediately.
Version 11.1.7 of IBM Cognos has been released in the year 2020. Since June 2023, release 12.0.0 of Cognos is available.
Did anybody else run into similar problems? Has anybody tested using a more recent version of COGNOS with FNMS?
Obviously, it would help if Flexera could qualify release 12.0.0 of COGNOS for FNMS 2023 R2, or at least for the upcoming FNMS 2024 R1 release.
QualysID: 378917
IBM Cognos Analytics Multiple Vulnerabilities (7040744)
CVE: CVE-2023-0482,CVE-2022-46364,CVE-2022-45787
QualysID: 379452
IBM Cognos Analytics Multiple Vulnerabilities (7123154)
CVE-2023-45857,CVE-2023-44487,CVE-2023-43051,CVE-2023-39410,CVE-2023-38359,CVE-2023-3817,CVE-2023-36478,CVE-2023-32344,CVE-2023-30996,CVE-2023-30589,CVE-2023-30588,CVE-2023-26136,CVE-2023-26115,CVE-2023-2597,CVE-2023-22049,CVE-2023-21968,CVE-2023-21967,CVE-2023-21954,CVE-2023-21939,CVE-2023-21938,CVE-2023-21937,CVE-2023-21930,CVE-2023-1370,CVE-2023-0464,CVE-2023-0215,CVE-2022-41854,CVE-2022-40897,CVE-2022-34357,CVE-2022-34169,CVE-2022-21496,CVE-2022-21443,CVE-2022-21434,CVE-2022-21299,CVE-2022-2097,CVE-2022-1471,CVE-2022-0778,CVE-2021-44906,CVE-2021-43138,CVE-2021-4160,CVE-2021-41035,CVE-2021-3712,CVE-2021-3711,CVE-2021-3572,CVE-2021-35603,CVE-2021-35588,CVE-2021-35586,CVE-2021-35578,CVE-2021-35565,CVE-2021-35564,CVE-2021-35560,CVE-2021-35559,CVE-2021-35556,CVE-2021-35550,CVE-2021-3449,CVE-2021-31684,CVE-2021-28167,CVE-2021-23841,CVE-2021-23840,CVE-2021-23839,CVE-2021-23445,CVE-2020-28458,CVE-2020-1971,CVE-2019-1547,CVE-2019-0227,CVE-2018-8032,CVE-2014-3596,CVE-2012-5784
‎Apr 25, 2024 09:41 AM
Thanks for sharing the information, Flexera is working on upgrade to Cognos 11.2.4 FixPack 3 as part of the FNMS 2024 R1 release, which is planned to be release at the end of June 2024.
Thank you!
Aamer
‎Apr 26, 2024 01:24 AM
Thanks for sharing the information, Flexera is working on upgrade to Cognos 11.2.4 FixPack 3 as part of the FNMS 2024 R1 release, which is planned to be release at the end of June 2024.
Thank you!
Aamer
‎Apr 26, 2024 01:24 AM