Lucene search
HistoryAug 15, 2024 - 5:15 p.m.
CVE-2024-40704
ibm
infosphere
11.7
security
vulnerability
x-force
authentication
headers
sensitive information
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
19.7%
IBM InfoSphere Information Server 11.7 could allow a privileged user to obtain sensitive information from authentication request headers. IBM X-Force ID: 298277.
Affected configurations
Node
ibminfosphere_information_serverMatch11.7
ORibminfosphere_information_serverMatch11.7.0.1
ORibminfosphere_information_serverMatch11.7.0.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | infosphere_information_server | 11.7 | cpe:2.3:a:ibm:infosphere_information_server:11.7:*:*:*:*:*:*:* |
| ibm | infosphere_information_server | 11.7.0.1 | cpe:2.3:a:ibm:infosphere_information_server:11.7.0.1:*:*:*:*:*:*:* |
| ibm | infosphere_information_server | 11.7.0.2 | cpe:2.3:a:ibm:infosphere_information_server:11.7.0.2:*:*:*:*:*:*:* |
Related
vulnrichment
vulnrichment
CVE-2024-40704 IBM InfoSphere Information Server information disclosure
2024-08-15 16:44:10
cve
cve
CVE-2024-40704
2024-08-15 17:15:17
cvelist
cvelist
CVE-2024-40704 IBM InfoSphere Information Server information disclosure
2024-08-15 16:44:10
CVSS3
4.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
19.7%
Related for NVD:CVE-2024-40704