Brute force attacks on IBM Informix HQ possible
Important security updates have been released for IBM Informix HQ and Cognos Analytics.
(Image: Alfa Photo/Shutterstock.com)
Attackers can exploit security vulnerabilities in IBM's server management Informix HQ and the reporting tool Cognos Analytics. In the worst case scenario, malicious code can be executed. Security updates are available.
Database server at risk
Administrators use Informix HQ to manage database servers based on Informix Dynamic Server. Because a logout function is faulty (CVE-2024-49342"high"), remote attackers can access servers via brute force attacks according to a warning message. XSS attacks are also conceivable in this context (CVE-2024-49343"medium").
The developers state that they have secured Informix HQ versions 3.0.0, 12.10.xC16W2 and 14.10.xC11W1 against the attacks described. So far, no information is known about attacks that are already underway. However, admins should not delay too long with patching.
Videos by heise
As IBM's developers explain in a post, Cognos Analytics is vulnerable via a vulnerability (CVE-2025-27607"high") in Python JSON Logger. At this point, malicious code can be executed remotely. Issues 11.2.4 FP6, 12.0.4 FP1 and 12.1.0 IF2 are protected against this.
(des)
