|
1211
|
5.3 |
MEDIUM
Network
-
|
-
|
IBM Maximo Application Suite 8.10, 8.11, and 9.0 - Monitor Component stores source code on the web server that could aid in further attacks against the system.
|
CWE-540
Inclusion of Sensitive Information in Source Code
|
CVE-2024-35144
|
2025-01-26 00:15 |
2025-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1212
|
8.8 |
HIGH
Network
|
-
|
-
|
IBM Analytics Content Hub 2.0 is vulnerable to a buffer overflow due to improper return length checking. A remote authenticated attacker could overflow a buffer and execute arbitrary code on the syst…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2024-39750
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1213
|
5.3 |
MEDIUM
Network
-
|
-
|
IBM Analytics Content Hub 2.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in furth…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2024-35134
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1214
|
5.3 |
MEDIUM
Network
-
|
-
|
IBM Control Center 6.2.1 and 6.3.1
could allow a remote attacker to enumerate usernames due to an observable discrepancy between login attempts.
|
CWE-204
Response Discrepancy Information Exposure
|
CVE-2024-35114
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1215
|
4.3 |
MEDIUM
Network
|
-
|
-
|
IBM Control Center 6.2.1 and 6.3.1
could allow an authenticated user to obtain sensitive information exposed through a directory listing.
|
CWE-548
Exposure of Information Through Directory Listing
|
CVE-2024-35113
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1216
|
5.4 |
MEDIUM
Network
|
-
|
-
|
IBM Control Center 6.2.1 and 6.3.1
could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used i…
|
CWE-80
Basic XSS
|
CVE-2024-35112
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1217
|
4.3 |
MEDIUM
Network
|
-
|
-
|
IBM Control Center 6.2.1 and 6.3.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in …
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2024-35111
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1218
|
5.3 |
MEDIUM
Network
-
|
-
|
IBM Cloud Pak System 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, and 2.3.4.0 could disclose sensitive information about the system that could aid in further attacks against the syst…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2023-38716
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1219
|
5.3 |
MEDIUM
Network
-
|
-
|
IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could disclose sensitive information about the system that co…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2023-38714
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
1220
|
5.3 |
MEDIUM
Network
-
|
-
|
IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.3.6 iFix1, 2.3.3.6 iFix2, 2.3.3.7, and 2.3.3.7 iFix1 could disclose sensitive information about the system that co…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2023-38713
|
2025-01-25 23:15 |
2025-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
