CVE-2016-3037 — IBM Cognos TM1 10.1 and 10.2 provides a service to return the victim's password with a valid session key. An authenticated attacker with user interaction could obtain this sensitive information. I — CVE Database · The Intelligence Room