|
841
|
8.8 |
HIGH
Network
|
-
|
-
|
IBM Analytics Content Hub 2.0 is vulnerable to a buffer overflow due to improper return length checking. A remote authenticated attacker could overflow a buffer and execute arbitrary code on the syst…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2024-39750
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
842
|
5.3 |
MEDIUM
Network
-
|
-
|
IBM Analytics Content Hub 2.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in furth…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2024-35134
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
843
|
5.3 |
MEDIUM
Network
-
|
-
|
IBM Control Center 6.2.1 and 6.3.1
could allow a remote attacker to enumerate usernames due to an observable discrepancy between login attempts.
|
CWE-204
Response Discrepancy Information Exposure
|
CVE-2024-35114
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
844
|
4.3 |
MEDIUM
Network
|
-
|
-
|
IBM Control Center 6.2.1 and 6.3.1
could allow an authenticated user to obtain sensitive information exposed through a directory listing.
|
CWE-548
Exposure of Information Through Directory Listing
|
CVE-2024-35113
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
845
|
5.4 |
MEDIUM
Network
|
-
|
-
|
IBM Control Center 6.2.1 and 6.3.1
could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used i…
|
CWE-80
Basic XSS
|
CVE-2024-35112
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
846
|
4.3 |
MEDIUM
Network
|
-
|
-
|
IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in …
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2024-35111
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
847
|
5.3 |
MEDIUM
Network
-
|
-
|
IBM Cloud Pak System 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could disclose sensitive information about the system that could aid in further attacks against the syst…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2023-38716
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
848
|
5.3 |
MEDIUM
Network
-
|
-
|
IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could disclose sensitive information about the system that co…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2023-38714
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
849
|
5.3 |
MEDIUM
Network
-
|
-
|
IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could disclose sensitive information about the system that co…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2023-38713
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
850
|
4.3 |
MEDIUM
Network
|
-
|
-
|
IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could allow an authenticated user to obtain sensitive informa…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2023-38271
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
