Lucene search
HistoryJul 26, 2024 - 2:15 p.m.
CVE-2024-40689
ibm
infosphere
sql injection
remote attacker
database manipulation
x-force id
CVSS3
6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L
EPSS
0
Percentile
9.4%
IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify, or delete information in the back-end database. IBM X-Force ID: 297719.
Related
cvelist
cvelist
CVE-2024-40689 IBM InfoSphere Information Server SQL injection
2024-07-26 13:27:26
vulnrichment
vulnrichment
CVE-2024-40689 IBM InfoSphere Information Server SQL injection
2024-07-26 13:27:26
ibm
ibm
cve
cve
CVE-2024-40689
2024-07-26 14:15:02
CVSS3
6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L
EPSS
0
Percentile
9.4%
Related for NVD:CVE-2024-40689