CVE-2024-39751

Published: Aug 6, 2024Modified: Aug 29, 2024

4.3

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Exploitability: 2.8 / Impact: 1.4

Source: NVD

Description

IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 297429

Affected (1)

Products: Ibm: Infosphere Information Server

1 product

Infosphere Information Server

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Ibm Infosphere Information Server	Version 11.7

Related CWEs

Generation of Error Message Containing Sensitive Information

The product generates an error message that includes sensitive information about its environment, users, or associated data.

References (2)

https://exchange.xforce.ibmcloud.com/vulnerabilities/297429

Source: psirt@us.ibm.com

Broken Link

https://www.ibm.com/support/pages/node/7160580

Source: psirt@us.ibm.com

Vendor Advisory

Timeline

No history available yet.